In the Linux kernel, the following vulnerability has been resolved:
ksmbd: fix out-of-bound read in smb2_write
ksmbd_smb2_check_message doesn't validate hdr->NextCommand. If
->NextCommand is bigger than Offset + Length of smb2 write, It will
allow oversized smb2 write length. It will cause OOB read in smb2_write.
CVSS
No CVSS.
References
Configurations
No configuration.
History
18 Aug 2025, 20:16
Type | Values Removed | Values Added |
---|---|---|
Summary |
|
16 Aug 2025, 14:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2025-08-16 14:15
Updated : 2025-08-18 20:16
NVD link : CVE-2023-3865
Mitre link : CVE-2023-3865
CVE.ORG link : CVE-2023-3865
JSON object : View
Products Affected
No product.
CWE
No CWE.