Description

In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix slab out of bounds write in smb_inherit_dacl() slab out-of-bounds write is caused by that offsets is bigger than pntsd allocation size. This patch add the check to validate 3 offsets using allocation size.

INFO

Published Date :

2024-05-21T15:30:42.898Z

Last Modified :

2025-05-04T07:42:33.718Z

Source :

Linux
AFFECTED PRODUCTS

The following products are affected by CVE-2023-52755 vulnerability.

Vendors Products
Linux
  • Linux Kernel
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2023-52755.

URL Resource
https://git.kernel.org/stable/c/09d9d8b40a3338193619c14ed4dc040f4f119e70 cve-icon cve-icon
https://git.kernel.org/stable/c/712e01f32e577e7e48ab0adb5fe550646a3d93cb cve-icon cve-icon
https://git.kernel.org/stable/c/8387c94d73ec66eb597c7a23a8d9eadf64bfbafa cve-icon cve-icon
https://git.kernel.org/stable/c/aaf0a07d60887d6c36fc46a24de0083744f07819 cve-icon cve-icon
https://git.kernel.org/stable/c/eebff19acaa35820cb09ce2ccb3d21bee2156ffb cve-icon cve-icon
https://lore.kernel.org/linux-cve-announce/2024052145-CVE-2023-52755-0e00@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2023-52755 cve-icon
https://www.cve.org/CVERecord?id=CVE-2023-52755 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact