Out-of-Bounds Read Vulnerability in ksmbd's smb2_find_context_vals

Out-of-Bounds Read Vulnerability in ksmbd's smb2_find_context_vals

CVE-2023-38426 · CRITICAL Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H

An issue was discovered in the Linux kernel before 6.3.4. ksmbd has an out-of-bounds read in smb2_find_context_vals when create_context's name_len is larger than the tag length.

Learn more about our Cis Benchmark Audit For Distribution Independent Linux.