CVE-2023-4515

Summary

In the Linux kernel, the following vulnerability has been resolved:

ksmbd: validate command request size

In commit 2b9b8f3b68ed ("ksmbd: validate command payload size"), except for SMB2_OPLOCK_BREAK_HE command, the request size of other commands is not checked, it's not expected. Fix it by add check for request size of other commands.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux35f450f54dca1519bb24faacd0428db09f89a11f < 595679098bdcdbfbba91ebe07a2f7f208df93870affected
LinuxLinux9650cf70ec9d94ff34daa088b643229231723c26 < c6bef3bc30fd4a175aef846b7d928a6c40d091cdaffected
LinuxLinux2b9b8f3b68edb3d67d79962f02e26dbb5ae3808d < ff7236b66d69582f90cf5616e63cfc3dc18142bbaffected
LinuxLinux2b9b8f3b68edb3d67d79962f02e26dbb5ae3808d < 5aa4fda5aa9c2a5a7bac67b4a12b089ab81fee3caffected
LinuxLinux768caf4019f0391c0b6452afe34cea1704133f7baffected
LinuxLinux5.15.121 < 5.15.127affected
LinuxLinux6.1.36 < 6.1.46affected
LinuxLinux6.3.10 < 6.4affected
LinuxLinux6.4affected
LinuxLinux0 < 6.4unaffected
LinuxLinux5.15.127 <= 5.15.*unaffected
LinuxLinux6.1.46 <= 6.1.*unaffected
LinuxLinux6.4.11 <= 6.4.*unaffected
LinuxLinux6.5 <= *unaffected

Weaknesses

References