CVE-2023-52442

Published: Feb 21, 2024

Modified: May 11, 2026

PUBLISHED

Description

In the Linux kernel, the following vulnerability has been resolved: ksmbd: validate session id and tree id in compound request `smb2_get_msg()` in smb2_get_ksmbd_tcon() and smb2_check_user_session() will always return the first request smb2 header in a compound request. if `SMB2_TREE_CONNECT_HE` is the first command in compound request, will return 0, i.e. The tree id check is skipped. This patch use ksmbd_req_buf_next() to get current command in compound.

Vendor	Product	Versions
Linux	Linux	affected `0626e6641f6b467447c81dd7678a69c66f7746cf - < 017d85c94f02090a87f4a473dbe0d6ee0da72693` affected `0626e6641f6b467447c81dd7678a69c66f7746cf - < becb5191d1d5fdfca0198a2e37457bbbf4fe266f` affected `0626e6641f6b467447c81dd7678a69c66f7746cf - < 4c2b350b2e269e3fd17bbfa42de1b42775b777ac` affected `0626e6641f6b467447c81dd7678a69c66f7746cf - < 3df0411e132ee74a87aa13142dfd2b190275332e`
Linux	Linux	affected `5.15` unaffected `0 - < 5.15` unaffected `5.15.145 - <= 5.15.` unaffected `6.1.53 - <= 6.1.` unaffected `6.4.16 - <= 6.4.*` +1 more versions

References

https://git.kernel.org/stable/c/017d85c94f02090a87f4a473dbe0d6ee0da72693

https://git.kernel.org/stable/c/becb5191d1d5fdfca0198a2e37457bbbf4fe266f

https://git.kernel.org/stable/c/4c2b350b2e269e3fd17bbfa42de1b42775b777ac

https://git.kernel.org/stable/c/3df0411e132ee74a87aa13142dfd2b190275332e

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2023-52442

Description

Affected Products

References