Lucene search
Arnaud Gatignol, Quentin Minster, Florent Saudel, Guillaume Teissier (@thalium_team)ZDI-22-1687HistoryDec 22, 2022 - 12:00 a.m.
Linux Kernel ksmbd Memory Exhaustion Denial-of-Service Vulnerability
2022-12-2200:00:00
Arnaud Gatignol, Quentin Minster, Florent Saudel, Guillaume Teissier (@thalium_team)
www.zerodayinitiative.com
26
linux kernel
smb2_negotiate
memory exhaustion
dos
vulnerability
remote attack
authentication
smb2
0.004 Low
EPSS
Percentile
73.2%
This vulnerability allows remote attackers to create a denial-of-service condition on affected installations of Linux Kernel. Authentication is not required to exploit this vulnerability. The specific flaw exists within the handling of SMB2_NEGOTIATE commands. The issue results from the lack of memory release after its effective lifetime. An attacker can leverage this vulnerability to create a denial-of-service condition on the system.
Related
debiancve
debiancve
CVE-2022-47941
2022-12-23 16:15:12
cbl_mariner
cbl_mariner
CVE-2022-47941 affecting package kernel for versions less than 5.15.86.1-1
2023-01-17 16:47:16
nvd
nvd
CVE-2022-47941
2022-12-23 16:15:12
prion
prion
Memory corruption
2022-12-23 16:15:00
cvelist
cvelist
CVE-2022-47941
2022-12-23 00:00:00
nessus
nessus
CBL Mariner 2.0 Security Update: kernel (CVE-2022-47941)
2023-03-20 00:00:00
Ubuntu 20.04 LTS / 22.04 LTS : Linux kernel kmsbd multiple vulnerabilities
2023-01-11 00:00:00
cve
cve
CVE-2022-47941
2022-12-23 16:15:12
redhatcve
redhatcve
CVE-2022-47941
2022-12-23 17:35:21
ubuntucve
ubuntucve
CVE-2022-47941
2022-12-23 00:00:00