15 matches found
Linux Distros Unpatched Vulnerability : CVE-2026-45924
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ksmbd: call ksmbdvfskernpathendremoving on some error paths There are two places where ksmbdvfskernpathendremoving needs to be called in order to balance what t...
CVE-2026-8449
No description is available for this CVE...
CVE-2026-8449
Rejected reason: This CVE ID has been rejected or withdrawn...
CVE-2026-8449
...
CVE-2026-8449
This CVE ID has been rejected or withdrawn...
CVE-2026-8449
Affects Linux ksmbd. A remote memory corruption flaw in the ACL inheritance path allows remote clients with directory-creation permissions to trigger a heap out-of-bounds read and subsequent heap corruption by crafting a Malformed SID in a DACL. Exploitation can cause kernel instability and denia...
Linux Distros Unpatched Vulnerability : CVE-2026-31706
"The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ksmbd: validate numaces and harden ACE walk in smbinheritdacl smbinheritdacl trusts the on-disk numaces value from the parent directory's DACL xattr and uses i...
Linux Distros Unpatched Vulnerability : CVE-2026-31432
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ksmbd: fix OOB write in QUERYINFO for compound requests When a compound request such as READ + QUERYINFOSecurity is received, and the first command READ consume...
Linux Distros Unpatched Vulnerability : CVE-2025-68809
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ksmbd: vfs: fix race on mflags in vfscache ksmbd maintains delete-on-close and pending-delete state in ksmbdinode-mflags. In vfscache.c this field is accessed...
Linux Distros Unpatched Vulnerability : CVE-2025-68786
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ksmbd: skip lock-range check on equal size to avoid size==0 underflow When size equals the current isize including 0, the code used to call checklockrangefilp,...
Linux Distros Unpatched Vulnerability : CVE-2023-32256
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in the Linux kernel's ksmbd component. A race condition between smb2 close operation and logoff in multichannel connections could result in a...
Linux Distros Unpatched Vulnerability : CVE-2025-21955
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ksmbd: prevent connection release during oplock break notification ksmbdwork could be freed when after connection release. Increment rcount of ksmbdconn to...
Linux Distros Unpatched Vulnerability : CVE-2025-22043
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ksmbd: add bounds check for durable handle context Add missing bounds check for durable handle context. CVE-2025-22043 Note that Nessus relies on the presence o...
Linux Distros Unpatched Vulnerability : CVE-2025-21945
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ksmbd: fix use-after-free in smb2lock If smblock-zerolen has value, -llist of smblock is not delete and flock is old one. It will cause use-after-free on error...
CVE-2023-32257
A flaw was found in the Linux kernel's ksmbd, a high-performance in-kernel SMB server. The specific flaw exists within the processing of SMB2SESSIONSETUP and SMB2LOGOFF commands. The issue results from the lack of proper locking when performing operations on an object. An attacker can leverage th...