Lucene search
K

9 matches found

CVE
CVE
added 2025/12/09 12:0 a.m.23 views

CVE-2023-53794

CVE-2023-53794 is a Linux kernel issue related to the CIFS session reconnect path. The provided documents confirm a fix for a use-after-free vulnerability by hardening the session state check in smb2_reconnect_server() and by avoiding collecting the exiting session in the reconnect flow. Affected...

6.2AI score0.00172EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2025/07/26 11:21 p.m.3 views

SUSE CVE-2025-38379

In the Linux kernel, the following vulnerability has been resolved: smb: client: fix warning when reconnecting channel When reconnecting a channel in smb2reconnectserver, a dummy tcon is passed down to smb2reconnect with -queryinterface uninitialized, so we can't call queuedelayedwork on it. Fix...

5.5CVSS6.4AI score0.00148EPSS
Exploits0References21
ATTACKERKB
ATTACKERKB
added 2025/07/25 12:53 p.m.5 views

CVE-2025-38379

In the Linux kernel, the following vulnerability has been resolved: smb: client: fix warning when reconnecting channel When reconnecting a channel in smb2reconnectserver, a dummy tcon is passed down to smb2reconnect with -queryinterface uninitialized, so we can't call queuedelayedwork on it. Fix...

5.5CVSS5.8AI score0.00148EPSS
Exploits0References5Affected Software1
Debian CVE
Debian CVE
added 2025/07/25 12:53 p.m.3 views

CVE-2025-38379

In the Linux kernel, the following vulnerability has been resolved: smb: client: fix warning when reconnecting channel When reconnecting a channel in smb2reconnectserver, a dummy tcon is passed down to smb2reconnect with -queryinterface uninitialized, so we can't call queuedelayedwork on it. Fix...

5.5CVSS5.4AI score0.00148EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.19 views

Linux Distros Unpatched Vulnerability : CVE-2024-35870

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - smb: client: fix UAF in smb2reconnectserver The UAF bug is due to smb2reconnectserver accessing a session that is already being teared down by another thread th...

4.4CVSS6.6AI score0.00228EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2024/07/08 3:3 a.m.4 views

kernel: smb: client: fix UAF in smb2_reconnect_server()

A flaw was found in the smb client in the Linux kernel. A potential use-after-free error was seen in the smb2reconnectserver function. This issue can lead to the crash of a client user session...

4.4CVSS7.2AI score0.00228EPSS
Exploits0References5
OSV
OSV
added 2024/05/19 9:15 a.m.2 views

DEBIAN-CVE-2024-35870

In the Linux kernel, the following vulnerability has been resolved: smb: client: fix UAF in smb2reconnectserver The UAF bug is due to smb2reconnectserver accessing a session that is already being teared down by another thread that is executing cifsputsmbses. This can happen when a the client has...

4.4CVSS5.4AI score0.00228EPSS
Exploits0References1
OSV
OSV
added 2024/05/19 9:15 a.m.1 views

UBUNTU-CVE-2024-35870

In the Linux kernel, the following vulnerability has been resolved: smb: client: fix UAF in smb2reconnectserver The UAF bug is due to smb2reconnectserver accessing a session that is already being teared down by another thread that is executing cifsputsmbses. This can happen when a the client has...

4.4CVSS6.1AI score0.00228EPSS
Exploits0References10
Positive Technologies
Positive Technologies
added 2024/01/29 12:0 a.m.9 views

PT-2024-3838

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.6.37 Description The issue is related to a Use-After-Free UAF bug in the smb2 reconnect server function. This bug occurs when smb2 reconnect server accesses a session that is already being torn down by another...

4.6CVSS5.5AI score0.00228EPSS
Exploits0
Rows per page
Query Builder