CVE-2023-3865

In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix out-of-bound read in smb2_write ksmbd_smb2_check_message doesn't validate hdr->NextCommand. If ->NextCommand is bigger than Offset + Length of smb2 write, It will allow oversized smb2 write length. It will cause OOB read in smb2_write.
CVSS

No CVSS.

Configurations

No configuration.

History

18 Aug 2025, 20:16

Type Values Removed Values Added
Summary
  • (es) En el kernel de Linux, se ha resuelto la siguiente vulnerabilidad: ksmbd: se corrige una lectura fuera de los límite en smb2_write. ksmbd_smb2_check_message no valida hdr->NextCommand. Si ->NextCommand es mayor que Offset + Length de la escritura smb2, se permite una longitud de escritura smb2 sobredimensionada. Esto provoca una lectura fuera de los límite en smb2_write.

16 Aug 2025, 14:15

Type Values Removed Values Added
New CVE

Information

Published : 2025-08-16 14:15

Updated : 2025-08-18 20:16


NVD link : CVE-2023-3865

Mitre link : CVE-2023-3865

CVE.ORG link : CVE-2023-3865


JSON object : View

Products Affected

No product.

CWE

No CWE.