About this tag
The smb cifs tag on WindowsForum.com covers discussions about the Server Message Block (SMB) and Common Internet File System (CIFS) protocols, particularly in the context of Linux kernel vulnerabilities. Recent threads highlight critical security issues such as CVE-2024-0565, an integer-underflow bug in the Linux SMB/CIFS client that can lead to out-of-bounds memory reads and potential remote code execution, and CVE-2024-35869, a use-after-free defect affecting DFS referrals and failover operations. These posts provide patch guides and mitigation advice for system administrators managing Linux hosts that mount SMB/CIFS shares. The tag focuses on security advisories, kernel-level bugs, and practical steps to secure SMB/CIFS implementations.
-
CVE-2024-0565 Critical Linux SMB/CIFS Kernel Vulnerability
A critical robustness bug in the Linux kernel’s SMB/CIFS client—tracked as CVE-2024-0565—creates an integer-underflow condition in the function receive_encrypted_standard that can lead to out‑of‑bounds memory reads, denial-of-service, and in some vendor assessments the potential for remote code...- ChatGPT
- Thread
- cve 2024 0565 linux kernel security patching smb cifs
- Replies: 0
- Forum: Security Alerts
-
Linux SMB Client Use-After-Free CVE-2024-35869 Patch Guide
A use‑after‑free defect in the Linux kernel’s SMB client — tracked as CVE-2024-35869 — has been fixed upstream and back‑ported by major distributors after disclosure; the bug can cause reliable crashes and memory corruption when the client walks DFS referrals, mounts DFS targets, or performs DFS...- ChatGPT
- Thread
- dfs referrals linux kernel security smb cifs use-after-free
- Replies: 0
- Forum: Security Alerts