cbcvebase.
CVE-2023-52755
published 2024-05-21

CVE-2023-52755: In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix slab out of bounds write in smb_inherit_dacl() slab out-of-bounds write is…

PriorityP357high8.4CVSS 3.1
AVLACLPRNUINSUCHIHAH
EPSS
26.86%
97.8th percentile
In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix slab out of bounds write in smb_inherit_dacl() slab out-of-bounds write is caused by that offsets is bigger than pntsd allocation size. This patch add the check to validate 3 offsets using allocation size.

Affected

18 ranges
VendorProductVersion rangeFixed in
debianlinux< linux 6.1.64-1 (bookworm)linux 6.1.64-1 (bookworm)
linuxlinux
linuxlinux>= 0626e6641f6b467447c81dd7678a69c66f7746cf < aaf0a07d60887d6c36fc46a24de0083744f07819aaf0a07d60887d6c36fc46a24de0083744f07819
linuxlinux>= 0626e6641f6b467447c81dd7678a69c66f7746cf < 8387c94d73ec66eb597c7a23a8d9eadf64bfbafa8387c94d73ec66eb597c7a23a8d9eadf64bfbafa
linuxlinux>= 0626e6641f6b467447c81dd7678a69c66f7746cf < 09d9d8b40a3338193619c14ed4dc040f4f119e7009d9d8b40a3338193619c14ed4dc040f4f119e70
linuxlinux>= 0626e6641f6b467447c81dd7678a69c66f7746cf < 712e01f32e577e7e48ab0adb5fe550646a3d93cb712e01f32e577e7e48ab0adb5fe550646a3d93cb
linuxlinux>= 0626e6641f6b467447c81dd7678a69c66f7746cf < eebff19acaa35820cb09ce2ccb3d21bee2156ffbeebff19acaa35820cb09ce2ccb3d21bee2156ffb
linuxlinux_kernel>= 0 < 6.1.64-16.1.64-1
linuxlinux_kernel>= 0 < 6.6.8-16.6.8-1
linuxlinux_kernel>= 0 < 6.6.8-16.6.8-1
linuxlinux_kernel>= 5.15 < 5.15.1405.15.140
linuxlinux_kernel>= 5.16 < 6.1.646.1.64
linuxlinux_kernel>= 6.2 < 6.5.136.5.13
linuxlinux_kernel>= 6.6 < 6.6.36.6.3
msrcazl3_kernel_6.6.3.1-1_on_azure_linux_3.0
msrcazl3_kernel_6.6.82.1-1_on_azure_linux_3.0
msrccbl2_kernel_5.15.140.1-1_on_cbl_mariner_2.0
msrccbl2_kernel_5.15.176.3-3_on_cbl_mariner_2.0

CVSS provenance

nvdv3.18.4HIGHCVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
osv8.4HIGH
vendor_debian8.4HIGH
vendor_msrc8.4HIGH
vendor_redhat8.4HIGH
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.