CVE-2024-26811

Summary

In the Linux kernel, the following vulnerability has been resolved:

ksmbd: validate payload size in ipc response

If installing malicious ksmbd-tools, ksmbd.mountd can return invalid ipc response to ksmbd kernel server. ksmbd should validate payload size of ipc response from ksmbd.mountd to avoid memory overrun or slab-out-of-bounds. This patch validate 3 ipc response that has payload.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux0626e6641f6b467447c81dd7678a69c66f7746cf < 88b7f1143b15b29cccb8392b4f38e75b7bb3e300affected
LinuxLinux0626e6641f6b467447c81dd7678a69c66f7746cf < 51a6c2af9d20203ddeeaf73314ba8854b38d01bdaffected
LinuxLinux0626e6641f6b467447c81dd7678a69c66f7746cf < a637fabac554270a851033f5ab402ecb90bc479caffected
LinuxLinux0626e6641f6b467447c81dd7678a69c66f7746cf < 76af689a45aa44714b46d1a7de4ffdf851ded896affected
LinuxLinux0626e6641f6b467447c81dd7678a69c66f7746cf < a677ebd8ca2f2632ccdecbad7b87641274e15aacaffected
LinuxLinux5.15affected
LinuxLinux0 < 5.15unaffected
LinuxLinux5.15.157 <= 5.15.*unaffected
LinuxLinux6.1.85 <= 6.1.*unaffected
LinuxLinux6.6.26 <= 6.6.*unaffected
LinuxLinux6.8.5 <= 6.8.*unaffected
LinuxLinux6.9 <= *unaffected

Weaknesses

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References