CVE-2026-43185

A flaw was found in ksmbd within the Linux kernel. A remote attacker can exploit a signedness bug in the smbdirectpreparenegotiation function by sending a specially crafted preferredsendsize value during SMB direct negotiation. This manipulation leads to an incorrect size calculation, allowing a...

ROS-20260323-73-0029

A vulnerability in the ksmbd module of the Linux kernel is related to pointer dereferencing errors. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service...

ksmbd: add bounds check for durable handle context

...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from ksmbd not properly handling sess-user references in Kerberos authentication, which could lead to reuse after...

SUSE CVE-2023-39176

A flaw was found within the parsing of SMB2 requests that have a transform header in the kernel ksmbd module. The issue results from the lack of proper validation of user-supplied data, which can result in a read past the end of an allocated buffer. An attacker can leverage this to disclose...

CVE-2007-0731

CVE-2007-0731: A stack-based buffer overflow in the Apple-specific Samba module (SMB File Server) of Apple Mac OS X 10.4–10.4.8 allows context-dependent attackers to execute arbitrary code via a long ACL. The vulnerability affects the SMB File Server component bundled with Mac OS X; root cause is...