Integer Underflow Vulnerability in SMB Client Sub-component of Linux Kernel
CVE-2024-0565 · HIGH Severity
CVSS:3.1/AV:A/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
An out-of-bounds memory read flaw was found in receive_encrypted_standard in fs/smb/client/smb2ops.c in the SMB Client sub-component in the Linux Kernel. This issue occurs due to integer underflow on the memcpy length, leading to a denial of service.
Learn more about our Cis Benchmark Audit For Distribution Independent Linux.