CVE-2023-52479
7.1
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H
Summary
In the Linux kernel, the following vulnerability has been resolved:
ksmbd: fix uaf in smb20_oplock_break_ack
drop reference after use opinfo.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Linux | Linux | 0626e6641f6b467447c81dd7678a69c66f7746cf < 694e13732e830cbbfedb562e57f28644927c33fd | affected |
| Linux | Linux | 0626e6641f6b467447c81dd7678a69c66f7746cf < 8226ffc759ea59f10067b9acdf7f94bae1c69930 | affected |
| Linux | Linux | 0626e6641f6b467447c81dd7678a69c66f7746cf < d5b0e9d3563e7e314a850e81f42b2ef6f39882f9 | affected |
| Linux | Linux | 0626e6641f6b467447c81dd7678a69c66f7746cf < c69813471a1ec081a0b9bf0c6bd7e8afd818afce | affected |
| Linux | Linux | 5.15 | affected |
| Linux | Linux | 0 < 5.15 | unaffected |
| Linux | Linux | 5.15.135 <= 5.15.* | unaffected |
| Linux | Linux | 6.1.57 <= 6.1.* | unaffected |
| Linux | Linux | 6.5.7 <= 6.5.* | unaffected |
| Linux | Linux | 6.6 <= * | unaffected |
Weaknesses
ADP Enrichment
CISA ADP Vulnrichment
- SSVC:
- Exploitation: none
- Automatable: no
- Technical Impact: partial
CVE Program Container
Additional References
- https://git.kernel.org/stable/c/694e13732e830cbbfedb562e57f28644927c33fd
- https://git.kernel.org/stable/c/8226ffc759ea59f10067b9acdf7f94bae1c69930
- https://git.kernel.org/stable/c/d5b0e9d3563e7e314a850e81f42b2ef6f39882f9
- https://git.kernel.org/stable/c/c69813471a1ec081a0b9bf0c6bd7e8afd818afce
References
- https://git.kernel.org/stable/c/694e13732e830cbbfedb562e57f28644927c33fd
- https://git.kernel.org/stable/c/8226ffc759ea59f10067b9acdf7f94bae1c69930
- https://git.kernel.org/stable/c/d5b0e9d3563e7e314a850e81f42b2ef6f39882f9
- https://git.kernel.org/stable/c/c69813471a1ec081a0b9bf0c6bd7e8afd818afce
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.