Lucene search
Arnaud Gatignol, Quentin Minster, Florent Saudel, Guillaume Teissier (@thalium_team)ZDI-22-1689HistoryDec 22, 2022 - 12:00 a.m.
Linux Kernel ksmbd Out-Of-Bounds Read Denial-of-Service Vulnerability
2022-12-2200:00:00
Arnaud Gatignol, Quentin Minster, Florent Saudel, Guillaume Teissier (@thalium_team)
www.zerodayinitiative.com
34
linux kernel
ksmbd
out-of-bounds
denial-of-service
vulnerability
smb2_tree_connect
authentication
0.002 Low
EPSS
Percentile
59.8%
This vulnerability allows remote attackers to create a denial-of-service condition on affected installations of Linux Kernel. Authentication is required to exploit this vulnerability. The specific flaw exists within the handling of SMB2_TREE_CONNECT commands. The issue results from the lack of proper validation of user-supplied data, which can result in a read past the end of an allocated buffer. An attacker can leverage this vulnerability to create a denial-of-service condition on the system.
Related
nvd
nvd
CVE-2022-47938
2022-12-23 16:15:12
redhatcve
redhatcve
CVE-2022-47938
2022-12-23 17:34:52
cvelist
cvelist
CVE-2022-47938
2022-12-23 00:00:00
prion
prion
Design/Logic Flaw
2022-12-23 16:15:00
cbl_mariner
cbl_mariner
CVE-2022-47938 affecting package kernel for versions less than 5.15.86.1-1
2023-01-17 16:47:16
debiancve
debiancve
CVE-2022-47938
2022-12-23 16:15:12
cve
cve
CVE-2022-47938
2022-12-23 16:15:12
nessus
nessus
CBL Mariner 2.0 Security Update: kernel (CVE-2022-47938)
2023-03-20 00:00:00
Ubuntu 20.04 LTS / 22.04 LTS : Linux kernel kmsbd multiple vulnerabilities
2023-01-11 00:00:00
RHEL 7 : kernel (Unpatched Vulnerability)
2024-05-11 00:00:00
ubuntucve
ubuntucve
CVE-2022-47938
2022-12-23 00:00:00