CVE-2024-26954

Published: May 1, 2024

Modified: May 11, 2026

PUBLISHED

Description

In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix slab-out-of-bounds in smb_strndup_from_utf16() If ->NameOffset of smb2_create_req is smaller than Buffer offset of smb2_create_req, slab-out-of-bounds read can happen from smb2_open. This patch set the minimum value of the name offset to the buffer offset to validate name length of smb2_create_req().

Vendor	Product	Versions
Linux	Linux	affected `0626e6641f6b467447c81dd7678a69c66f7746cf - < d70c2e0904ab3715c5673fd45788a464a246d1db` affected `0626e6641f6b467447c81dd7678a69c66f7746cf - < 9e4937cbc150f9d5a9b5576e1922ef0b5ed2eb72` affected `0626e6641f6b467447c81dd7678a69c66f7746cf - < 3b8da67191e938a63d2736dabb4ac5d337e5de57` affected `0626e6641f6b467447c81dd7678a69c66f7746cf - < 4f97e6a9d62cb1fce82fbf4baff44b83221bc178` affected `0626e6641f6b467447c81dd7678a69c66f7746cf - < a80a486d72e20bd12c335bcd38b6e6f19356b0aa`
Linux	Linux	affected `5.15` unaffected `0 - < 5.15` unaffected `6.1.119 - <= 6.1.` unaffected `6.6.32 - <= 6.6.` unaffected `6.7.12 - <= 6.7.*` +2 more versions

References

https://git.kernel.org/stable/c/d70c2e0904ab3715c5673fd45788a464a246d1db

https://git.kernel.org/stable/c/9e4937cbc150f9d5a9b5576e1922ef0b5ed2eb72

https://git.kernel.org/stable/c/3b8da67191e938a63d2736dabb4ac5d337e5de57

https://git.kernel.org/stable/c/4f97e6a9d62cb1fce82fbf4baff44b83221bc178

https://git.kernel.org/stable/c/a80a486d72e20bd12c335bcd38b6e6f19356b0aa

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2024-26954

Description

Affected Products

References