UBUNTU-CVE-2025-68806

In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix buffer validation by including null terminator size in EA length The smb2setea function, which handles Extended Attributes EA, was performing buffer validation checks that incorrectly omitted the size of the null...

CVE-2023-4130

In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix wrong next length validation of ea buffer in smb2setea There are multiple smb2eainfo buffers in FILEFULLEAINFORMATION request from client. ksmbd find next smb2eainfo using -NextEntryOffset of current smb2eainfo. ksmbd...

AZL-52926 CVE-2024-50152 affecting package kernel for versions less than 6.6.64.2-1

In the Linux kernel, the following vulnerability has been resolved: smb: client: fix possible double free in smb2setea Clang static checkerscan-build warning： fs/smb/client/smb2ops.c:1304:2: Attempt to free released memory. 1304 | kfreeea; | ^ There is a double free in such case: 'ea is initializ...

UBUNTU-CVE-2024-50152

In the Linux kernel, the following vulnerability has been resolved: smb: client: fix possible double free in smb2setea Clang static checkerscan-build warning： fs/smb/client/smb2ops.c:1304:2: Attempt to free released memory. 1304 | kfreeea; | ^ There is a double free in such case: 'ea is initializ...