248 matches found
CVE-2024-35869
The following vulnerability has been resolved in the Linux kernel: smb: client: Fix - Guarantee refcounted children from the parent session...
CVE-2024-35869
In the Linux kernel, the following vulnerability has been resolved: smb: client: guarantee refcounted children from parent session Avoid potential use-after-free bugs when walking DFS referrals, mounting and performing DFS failover by ensuring that all children from parent @tcon-ses are also...
DEBIAN-CVE-2024-35869
In the Linux kernel, the following vulnerability has been resolved: smb: client: guarantee refcounted children from parent session Avoid potential use-after-free bugs when walking DFS referrals, mounting and performing DFS failover by ensuring that all children from parent @tcon-ses are also...
CVE-2024-35869
In the Linux kernel, the following vulnerability has been resolved: smb: client: guarantee refcounted children from parent session Avoid potential use-after-free bugs when walking DFS referrals, mounting and performing DFS failover by ensuring that all children from parent @tcon-ses are also...
CVE-2024-35869 smb: client: guarantee refcounted children from parent session
In the Linux kernel, the following vulnerability has been resolved: smb: client: guarantee refcounted children from parent session Avoid potential use-after-free bugs when walking DFS referrals, mounting and performing DFS failover by ensuring that all children from parent @tcon-ses are also...
CVE-2024-35869
CVE-2024-35869 is a Linux kernel vulnerability in the SMB/CIFS client code path. The issue arises from failing to properly refcount all child objects when traversing DFS referrals, DFS mount failover, or sessions, risking a use-after-free of session-related references. The flaw is tied to maintai...
CVE-2024-35869 smb: client: guarantee refcounted children from parent session
In the Linux kernel, the following vulnerability has been resolved: smb: client: guarantee refcounted children from parent session Avoid potential use-after-free bugs when walking DFS referrals, mounting and performing DFS failover by ensuring that all children from parent @tcon-ses are also...
kernel: cifs: fix DFS traversal oops without CONFIG_CIFS_DFS_UPCALL
In the Linux kernel, the following vulnerability has been resolved: cifs: fix DFS traversal oops without CONFIGCIFSDFSUPCALL When compiled with CONFIGCIFSDFSUPCALL disabled, cifsdfsdautomount is NULL. cifs.ko logic for mapping CIFSFATTRDFSREFERRAL attributes to SAUTOMOUNT and corresponding dentry...
CVE-2024-29066
Windows Distributed File System DFS Remote Code Execution Vulnerability...
CVE-2024-26226
Windows Distributed File System DFS Information Disclosure Vulnerability...
CVE-2024-26226 Windows Distributed File System (DFS) Information Disclosure Vulnerability
...
CVE-2024-26226
CVE-2024-26226 is a Windows DFS information disclosure vulnerability. The initial entry confirms the flaw affects Windows DFS and can lead to exposure of sensitive data (cconf. impact). The connected materials show related Windows security updates (KB5036896, KB5036899, KB5036922) addressing secu...
CVE-2024-29066
CVE-2024-29066 is an Windows DFS Remote Code Execution vulnerability. Affected: Windows Distributed File System (DFS). CVSS 3.1 base 7.2 (NETWORK, HIGH impact across Confidentiality, Integrity, Availability). Requirements: HIGH privileges, no user interaction; scope UNCHANGED. Concrete root-cause...
CVE-2024-29066 Windows Distributed File System (DFS) Remote Code Execution Vulnerability
...
Windows Distributed File System (DFS) Remote Code Execution Vulnerability
...
Windows Distributed File System (DFS) Information Disclosure Vulnerability
...
RT-Thread 安全漏洞
RT-Thread is an open source IoT real-time operating system RTOS open-sourced by RT-Thread. RT-Thread suffers from a buffer overflow vulnerability that stems from dfsv2 dfsfile failing to properly validate the length size of input data, which can be exploited by a remote attacker to execute...
PT-2024-20367 · Rt-Thread · Rt-Thread
Name of the Vulnerable Software and Affected Versions: RT-Thread versions through 5.0.2 Description: A heap buffer overflow occurs in dfs v2 dfs file in RT-Thread. Recommendations: For RT-Thread versions through 5.0.2, at the moment, there is no information about a newer version that contains a f...
PT-2024-20368 · Rt-Thread · Rt-Thread
Name of the Vulnerable Software and Affected Versions: RT-Thread versions 5.0.2 and earlier Description: A heap buffer overflow occurs in the dfs v2 romfs filesystem. Recommendations: For RT-Thread versions 5.0.2 and earlier, at the moment, there is no information about a newer version that...
CVE-2023-36425
Windows Distributed File System DFS Remote Code Execution Vulnerability...