Lucene search
K

7 matches found

ATTACKERKB
ATTACKERKB
added 2026/05/01 1:56 p.m.6 views

CVE-2026-31705

In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix out-of-bounds write in smb2getea EA alignment smb2getea applies 4-byte alignment padding via memset after writing each EA entry. The bounds check on buffreelen is performed before the value memcpy, but the alignment...

9.8CVSS5.9AI score0.00394EPSS
Exploits0References6Affected Software1
CVE
CVE
added 2026/05/01 1:56 p.m.45 views

CVE-2026-31705

The CVE-2026-31705 issue affects the ksmbd component of the Linux kernel, where an out-of-bounds write occurs in smb2_get_ea() during EA alignment padding. After writing each EA entry, a 4-byte alignment padding is applied with memset() unconditionally, potentially overwriting adjacent kernel hea...

9.8CVSS5.9AI score0.00394EPSS
Exploits0References6Affected Software1
Debian CVE
Debian CVE
added 2026/05/01 1:56 p.m.6 views

CVE-2026-31705

In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix out-of-bounds write in smb2getea EA alignment smb2getea applies 4-byte alignment padding via memset after writing each EA entry. The bounds check on buffreelen is performed before the value memcpy, but the alignment...

9.8CVSS5.8AI score0.00394EPSS
Exploits0
CNNVD
CNNVD
added 2026/05/01 12:0 a.m.11 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the smb2getea function’s memset operation, where the remaining space after the EA alignment is no...

9.8CVSS5.9AI score0.00394EPSS
Exploits0References1
NVD
NVD
added 2026/04/24 3:16 p.m.3 views

CVE-2026-31612

In the Linux kernel, the following vulnerability has been resolved: ksmbd: validate EaNameLength in smb2getea smb2getea reads eareq-EaNameLength from the client request and passes it directly to strncmp as the comparison length without verifying that the length of the name really is the size of t...

7.5CVSS0.00415EPSS
Exploits0References7
Cvelist
Cvelist
added 2026/04/24 2:42 p.m.31 views

CVE-2026-31612 ksmbd: validate EaNameLength in smb2_get_ea()

In the Linux kernel, the following vulnerability has been resolved: ksmbd: validate EaNameLength in smb2getea smb2getea reads eareq-EaNameLength from the client request and passes it directly to strncmp as the comparison length without verifying that the length of the name really is the size of t...

7.5CVSS0.00415EPSS
Exploits0References7
Positive Technologies
Positive Technologies
added 2026/04/24 12:0 a.m.16 views

PT-2026-34964

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description In the ksmbd module, the smb2 get ea function reads the EaNameLength variable from a client request and passes it to strncmp as the comparison length without verifying if the name length...

9.8CVSS5.2AI score0.00514EPSS
Exploits0References349
Rows per page
Query Builder