Description

In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix Out-of-Bounds Write in ksmbd_vfs_stream_write An offset from client could be a negative value, It could allows to write data outside the bounds of the allocated buffer. Note that this issue is coming when setting 'vfs objects = streams_xattr parameter' in ksmbd.conf.

INFO

Published Date :

2024-12-27T14:51:29.078Z

Last Modified :

2025-11-03T20:51:15.360Z

Source :

Linux
AFFECTED PRODUCTS

The following products are affected by CVE-2024-56626 vulnerability.

Vendors Products
Linux
  • Linux Kernel
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2024-56626.

URL Resource
https://git.kernel.org/stable/c/164d3597d26d9acff5d5b8bc3208bdcca942dd6a cve-icon cve-icon
https://git.kernel.org/stable/c/1aea5c9470be2c7129704fb1b9562b1e3e0576f8 cve-icon cve-icon
https://git.kernel.org/stable/c/313dab082289e460391c82d855430ec8a28ddf81 cve-icon cve-icon
https://git.kernel.org/stable/c/8cd7490fc0f268883e86e840cda5311257af69ca cve-icon cve-icon
https://git.kernel.org/stable/c/c5797f195c67132d061d29c57a7c6d30530686f0 cve-icon cve-icon
https://lists.debian.org/debian-lts-announce/2025/03/msg00001.html cve-icon
https://lore.kernel.org/linux-cve-announce/2024122712-CVE-2024-56626-f2f9@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2024-56626 cve-icon
https://www.cve.org/CVERecord?id=CVE-2024-56626 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact