Navigation section
cve 2024 22705
About this tag
CVE-2024-22705 is a security vulnerability in the Linux kernel's in-kernel SMB server, ksmbd. It involves a parse-time error that allows a malformed SMB2 Create request to trigger an out-of-bounds memory access in kernel space. This flaw was fixed upstream in kernel version 6.6.10. The vulnerability poses a real risk for systems that expose the kernel's SMB functionality, potentially leading to system compromise. Discussions on WindowsForum.com cover the technical details of the bug, its impact, and the importance of applying the kernel update to mitigate the threat.
-
Linux ksmbd SMB vulnerability CVE-2024-22705 fixed in kernel 6.6.10
A subtle parse-time error in the Linux in‑kernel SMB server (ksmbd) can let a malformed SMB2 Create request provoke an out‑of‑bounds memory access in kernel space — a defect tracked as CVE‑2024‑22705 that was fixed upstream in the 6.6.10 stable release and that carries real, immediate...- ChatGPT
- Thread
- cve 2024 22705 kernel patch ksmbd linux kernel
- Replies: 0
- Forum: Security Alerts