Lucene search
K

22 matches found

SUSE CVE
SUSE CVE
added 2026/06/26 2:14 a.m.7 views

SUSE CVE-2026-52967

In the Linux kernel, the following vulnerability has been resolved: smb/client: fix possible infinite loop and oob read in symlinkdata On 32-bit architectures, the infinite loop is as follows: len = p-ErrorDataLength == 0xfffffff8 u8 next = p-ErrorContextData + len next == p On 32-bit...

8.1CVSS5.8AI score0.00398EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2026/06/25 11:24 p.m.7 views

CVE-2026-52967

A flaw was found in the Linux kernel's Server Message Block SMB client. This vulnerability, located in the symlinkdata function, could allow a malicious SMB server to trigger an infinite loop, leading to a Denial of Service DoS condition. Additionally, an out-of-bounds read could occur, potential...

8.1CVSS5.8AI score0.00398EPSS
Exploits0References4
EUVD
EUVD
added 2026/06/24 6:32 p.m.5 views

EUVD-2026-38835

In the Linux kernel, the following vulnerability has been resolved: smb/client: fix possible infinite loop and oob read in symlinkdata On 32-bit architectures, the infinite loop is as follows: len = p-ErrorDataLength == 0xfffffff8 u8 next = p-ErrorContextData + len next == p On 32-bit...

5.7AI score0.00398EPSS
Exploits0References7
NVD
NVD
added 2026/06/24 5:17 p.m.9 views

CVE-2026-52967

In the Linux kernel, the following vulnerability has been resolved: smb/client: fix possible infinite loop and oob read in symlinkdata On 32-bit architectures, the infinite loop is as follows: len = p-ErrorDataLength == 0xfffffff8 u8 next = p-ErrorContextData + len next == p On 32-bit...

8.1CVSS0.00398EPSS
Exploits0References6
OSV
OSV
added 2026/06/24 4:28 p.m.2 views

CVE-2026-52967 smb/client: fix possible infinite loop and oob read in symlink_data()

In the Linux kernel, the following vulnerability has been resolved: smb/client: fix possible infinite loop and oob read in symlinkdata On 32-bit architectures, the infinite loop is as follows: len = p-ErrorDataLength == 0xfffffff8 u8 next = p-ErrorContextData + len next == p On 32-bit...

8.1CVSS5.8AI score0.00398EPSS
Exploits0References9
ATTACKERKB
ATTACKERKB
added 2026/06/24 4:28 p.m.6 views

CVE-2026-52967

In the Linux kernel, the following vulnerability has been resolved: smb/client: fix possible infinite loop and oob read in symlinkdata On 32-bit architectures, the infinite loop is as follows: len = p-ErrorDataLength == 0xfffffff8 u8 next = p-ErrorContextData + len next == p On 32-bit...

5.6AI score0.00398EPSS
Exploits0References7Affected Software1
Cvelist
Cvelist
added 2026/06/24 4:28 p.m.31 views

CVE-2026-52967 smb/client: fix possible infinite loop and oob read in symlink_data()

In the Linux kernel, the following vulnerability has been resolved: smb/client: fix possible infinite loop and oob read in symlinkdata On 32-bit architectures, the infinite loop is as follows: len = p-ErrorDataLength == 0xfffffff8 u8 next = p-ErrorContextData + len next == p On 32-bit...

8.1CVSS0.00398EPSS
Exploits0References6
CVE
CVE
added 2026/06/24 4:28 p.m.5 views

CVE-2026-52967

The CVE-2026-52967 issue affects the Linux kernel SMB client in the symlink_data() logic. On 32-bit architectures, it can cause an infinite loop due to len calculation (p->ErrorDataLength == 0xfffffff8) and an out-of-bounds read (len == 0xfffffff0) where next points to invalid memory (e.g., p ...

8.1CVSS5.7AI score0.00398EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2026/06/24 12:0 a.m.8 views

PT-2026-51861

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the symlink data function within the SMB client. On 32-bit architectures, this can lead to an infinite loop or an out-of-bounds read reading data outside the intended...

8.1CVSS5.8AI score0.00398EPSS
Exploits0References8
Microsoft CVE
Microsoft CVE
added 2026/05/29 8:4 a.m.10 views

smb/client: fix out-of-bounds read in symlink_data()

...

9.1CVSS5.4AI score0.00513EPSS
Exploits0
SUSE CVE
SUSE CVE
added 2026/05/29 1:15 a.m.13 views

SUSE CVE-2026-46185

In the Linux kernel, the following vulnerability has been resolved: smb/client: fix out-of-bounds read in symlinkdata Since smb2checkmessage returns success without length validation for the symlink error response, in symlinkdata it is possible for iov-iovlen to be smaller than sizeofstruct...

5.5CVSS5.7AI score0.00513EPSS
Exploits0References9
Tenable Nessus
Tenable Nessus
added 2026/05/29 12:0 a.m.27 views

Linux Distros Unpatched Vulnerability : CVE-2026-46185

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: smb/client: fix out-of-bounds read in symlinkdata Since smb2checkmessage returns success...

9.1CVSS6.7AI score0.00513EPSS
Exploits0References3
NVD
NVD
added 2026/05/28 10:16 a.m.15 views

CVE-2026-46185

In the Linux kernel, the following vulnerability has been resolved: smb/client: fix out-of-bounds read in symlinkdata Since smb2checkmessage returns success without length validation for the symlink error response, in symlinkdata it is possible for iov-iovlen to be smaller than sizeofstruct...

9.1CVSS0.00513EPSS
Exploits0References6
OSV
OSV
added 2026/05/28 10:16 a.m.10 views

UBUNTU-CVE-2026-46185

In the Linux kernel, the following vulnerability has been resolved: smb/client: fix out-of-bounds read in symlinkdata Since smb2checkmessage returns success without length validation for the symlink error response, in symlinkdata it is possible for iov-iovlen to be smaller than sizeofstruct...

9.1CVSS5.8AI score0.00513EPSS
Exploits0References24
OSV
OSV
added 2026/05/28 9:36 a.m.1 views

CVE-2026-46185 smb/client: fix out-of-bounds read in symlink_data()

In the Linux kernel, the following vulnerability has been resolved: smb/client: fix out-of-bounds read in symlinkdata Since smb2checkmessage returns success without length validation for the symlink error response, in symlinkdata it is possible for iov-iovlen to be smaller than sizeofstruct...

9.1CVSS6.5AI score0.00513EPSS
Exploits0References9
ATTACKERKB
ATTACKERKB
added 2026/05/28 9:36 a.m.11 views

CVE-2026-46185

In the Linux kernel, the following vulnerability has been resolved: smb/client: fix out-of-bounds read in symlinkdata Since smb2checkmessage returns success without length validation for the symlink error response, in symlinkdata it is possible for iov-iovlen to be smaller than sizeofstruct...

9.1CVSS5.8AI score0.00513EPSS
Exploits0References7Affected Software1
EUVD
EUVD
added 2026/05/28 9:36 a.m.13 views

EUVD-2026-32812

In the Linux kernel, the following vulnerability has been resolved: smb/client: fix out-of-bounds read in symlinkdata Since smb2checkmessage returns success without length validation for the symlink error response, in symlinkdata it is possible for iov-iovlen to be smaller than sizeofstruct...

5.7AI score0.00513EPSS
Exploits0References5
Debian CVE
Debian CVE
added 2026/05/28 9:36 a.m.10 views

CVE-2026-46185

In the Linux kernel, the following vulnerability has been resolved: smb/client: fix out-of-bounds read in symlinkdata Since smb2checkmessage returns success without length validation for the symlink error response, in symlinkdata it is possible for iov-iovlen to be smaller than sizeofstruct...

9.1CVSS5.8AI score0.00513EPSS
Exploits0
CVE
CVE
added 2026/05/28 9:36 a.m.33 views

CVE-2026-46185

The CVE-2026-46185 issue affects the Linux kernel SMB client. The root cause is insufficient length validation in smb2_check_message() when processing symlink error responses, allowing a symlink_data() path to read beyond the buffer if iov_len is smaller than the 64-byte SMB2 header and accessing...

9.1CVSS5.7AI score0.00513EPSS
Exploits0References6Affected Software1
Cvelist
Cvelist
added 2026/05/28 9:36 a.m.34 views

CVE-2026-46185 smb/client: fix out-of-bounds read in symlink_data()

In the Linux kernel, the following vulnerability has been resolved: smb/client: fix out-of-bounds read in symlinkdata Since smb2checkmessage returns success without length validation for the symlink error response, in symlinkdata it is possible for iov-iovlen to be smaller than sizeofstruct...

9.1CVSS0.00513EPSS
Exploits0References6
Rows per page
Query Builder