ZDI-CAN-20479: Linux Kernel ksmbd Tree Connection NULL Pointer Dereference Denial-of-Service Vulnerability
First published: Wed May 17 2023(Updated: )
This vulnerability allows remote attackers to create a denial-of-service condition on affected installations of Linux Kernel. Authentication is not required to exploit this vulnerability, but only systems with ksmbd enabled are vulnerable. The specific flaw exists within the handling of SMB2_TREE_CONNECT and SMB2_QUERY_INFO commands. The issue results from the lack of proper validation of a pointer prior to accessing it. An attacker can leverage this vulnerability to create a denial-of-service condition on the system.
| Affected Software | Affected Version | How to fix |
|---|---|---|
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID for this vulnerability?
The vulnerability ID for this vulnerability is ZDI-CAN-20479.
What is the title of this vulnerability?
The title of this vulnerability is ZDI-23-696: Linux Kernel ksmbd Tree Connection NULL Pointer Dereference Denial-of-Service Vulnerability.
What is the severity of ZDI-CAN-20479?
The severity of ZDI-CAN-20479 is high.
How does this vulnerability impact Linux Kernel?
This vulnerability allows remote attackers to create a denial-of-service condition on affected installations of Linux Kernel.
What software is affected by ZDI-CAN-20479?
The affected software is Linux Kernel.
Do I need authentication to exploit ZDI-CAN-20479?
No, authentication is not required to exploit ZDI-CAN-20479.
Which systems are vulnerable to ZDI-CAN-20479?
Only systems with ksmbd enabled are vulnerable to ZDI-CAN-20479.
Where can I find more information about ZDI-CAN-20479?
You can find more information about ZDI-CAN-20479 at these references: [http://www.zerodayinitiative.com/advisories/ZDI-23-696/](http://www.zerodayinitiative.com/advisories/ZDI-23-696/), [https://github.com/torvalds/linux/commit/3ac00a2ab69b34189942afa9e862d5170cdcb018](https://github.com/torvalds/linux/commit/3ac00a2ab69b34189942afa9e862d5170cdcb018), [https://www.zerodayinitiative.com/advisories/ZDI-CAN-20479/](https://www.zerodayinitiative.com/advisories/ZDI-CAN-20479/).
- agent/description
- agent/event
- agent/first-publish-date
- agent/last-modified-date
- agent/references
- agent/severity
- agent/softwarecombine
- agent/tags
- agent/title
- agent/type
- collector/zdi-advisory
- source/ZDI
- alias/ZDI-23-696
- alias/ZDI-CAN-20479
- alias/CVE-2023-32248
- agent/software-canonical-lookup
- collector/zdi-published
- vendor/linux
- canonical/linux kernel