CVE-2024-26811
MEDIUMLinux Kernel - Memory Corruption via Invalid IPC Response Payload
Title source: llmDescription
In the Linux kernel, the following vulnerability has been resolved: ksmbd: validate payload size in ipc response If installing malicious ksmbd-tools, ksmbd.mountd can return invalid ipc response to ksmbd kernel server. ksmbd should validate payload size of ipc response from ksmbd.mountd to avoid memory overrun or slab-out-of-bounds. This patch validate 3 ipc response that has payload.
References (8)
Core 8
Core References
Mailing List, Third Party Advisory
https://lists.fedoraproject.org/archives/list/[email protected]/message/6XCNJZBDMGJXRIKLGKM4RRJU4XCHPX62/
Mailing List, Third Party Advisory
https://lists.fedoraproject.org/archives/list/[email protected]/message/LG6L4FXO4WNWUM6W7USOH2YTRVWREM3V/
Mailing List, Third Party Advisory
https://lists.fedoraproject.org/archives/list/[email protected]/message/RO3RO34MLQ6WT3A7O6STQUVXW43N6W3K/
Scores
CVSS v3
5.5
EPSS
0.0026
EPSS Percentile
17.6%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
CISA SSVC
Vulnrichment
Exploitation
none
Automatable
no
Technical Impact
partial
Details
CWE
CWE-787
Status
published
Products (14)
Linux/Linux
< 5.15
Linux/Linux
0626e6641f6b467447c81dd7678a69c66f7746cf - 51a6c2af9d20203ddeeaf73314ba8854b38d01bd
Linux/Linux
0626e6641f6b467447c81dd7678a69c66f7746cf - 76af689a45aa44714b46d1a7de4ffdf851ded896
Linux/Linux
0626e6641f6b467447c81dd7678a69c66f7746cf - 88b7f1143b15b29cccb8392b4f38e75b7bb3e300
Linux/Linux
0626e6641f6b467447c81dd7678a69c66f7746cf - a637fabac554270a851033f5ab402ecb90bc479c
Linux/Linux
0626e6641f6b467447c81dd7678a69c66f7746cf - a677ebd8ca2f2632ccdecbad7b87641274e15aac
Linux/Linux
5.15
Linux/Linux
5.15.157 - 5.15.*
Linux/Linux
6.1.85 - 6.1.*
Linux/Linux
6.6.26 - 6.6.*
... and 4 more
Published
Apr 08, 2024
Tracked Since
Feb 18, 2026