ACK: [SRU][J][PATCH 0/1] CVE-2024-26952
Manuel Diewald
manuel.diewald at canonical.com
Fri Jun 28 15:01:07 UTC 2024
On Wed, Jun 26, 2024 at 04:14:26PM -0500, Bethany Jamison wrote:
> [Impact]
>
> ksmbd: fix potencial out-of-bounds when buffer offset is invalid
>
> I found potencial out-of-bounds when buffer offset fields of a few requests
> is invalid. This patch set the minimum value of buffer offset field to
> ->Buffer offset to validate buffer length.
>
> [Fix]
>
> Noble: released
> Jammy: Backport - context conflicts from neighboring lines, shouldn't
> affect the fix so I applied the fix changes as given
> Focal: not affected
> Bionic: not affected
> Xenial: not affected
> Trusty: not affected
>
> [Test Case]
>
> Compile and boot tested
>
> [Where problems could occur]
>
> This fix affects those who use the KSMBD server, an issue with this fix
> would be visible to the user via unexpected system behavior or a system
> crash.
>
> Namjae Jeon (1):
> ksmbd: fix potencial out-of-bounds when buffer offset is invalid
>
> fs/ksmbd/smb2misc.c | 22 +++++++++++++++------
> fs/ksmbd/smb2pdu.c | 48 ++++++++++++++++++++++++---------------------
> 2 files changed, 42 insertions(+), 28 deletions(-)
>
> --
> 2.34.1
>
>
> --
> kernel-team mailing list
> kernel-team at lists.ubuntu.com
> https://lists.ubuntu.com/mailman/listinfo/kernel-team
Acked-by: Manuel Diewald <manuel.diewald at canonical.com>
--
Manuel
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 833 bytes
Desc: not available
URL: <https://lists.ubuntu.com/archives/kernel-team/attachments/20240628/ddcb2b86/attachment.sig>
More information about the kernel-team
mailing list