Integer Underflow Vulnerability in SMB Client Sub-component of Linux Kernel

Integer Underflow Vulnerability in SMB Client Sub-component of Linux Kernel

CVE-2024-0565 · HIGH Severity

CVSS:3.1/AV:A/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H

An out-of-bounds memory read flaw was found in receive_encrypted_standard in fs/smb/client/smb2ops.c in the SMB Client sub-component in the Linux Kernel. This issue occurs due to integer underflow on the memcpy length, leading to a denial of service.

Learn more about our Cis Benchmark Audit For Distribution Independent Linux.