CVE-2023-53399

Summary

In the Linux kernel, the following vulnerability has been resolved:

ksmbd: fix NULL pointer dereference in smb2_get_info_filesystem()

If share is , share->path is NULL and it cause NULL pointer dereference issue.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux0626e6641f6b467447c81dd7678a69c66f7746cf < 227eb2689b44d0d60da3839b146983e73435924caffected
LinuxLinux0626e6641f6b467447c81dd7678a69c66f7746cf < a70751dd7b60eab025e97e19b6b2477c6eaf2bbbaffected
LinuxLinux0626e6641f6b467447c81dd7678a69c66f7746cf < b35f6c031b87d9e51f141ff6de0ea59756a8e313affected
LinuxLinux0626e6641f6b467447c81dd7678a69c66f7746cf < 1636e09779f83e10e6ed57d91ef94abcefdd206baffected
LinuxLinux0626e6641f6b467447c81dd7678a69c66f7746cf < 3ac00a2ab69b34189942afa9e862d5170cdcb018affected
LinuxLinux5.15affected
LinuxLinux0 < 5.15unaffected
LinuxLinux5.15.111 <= 5.15.*unaffected
LinuxLinux6.1.28 <= 6.1.*unaffected
LinuxLinux6.2.15 <= 6.2.*unaffected
LinuxLinux6.3.2 <= 6.3.*unaffected
LinuxLinux6.4 <= *unaffected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References