Advisory Details

December 22nd, 2022

Linux Kernel ksmbd Memory Exhaustion Denial-of-Service Vulnerability

ZDI-22-1687
ZDI-CAN-17815

CVE ID CVE-2022-47941
CVSS SCORE 5.3, AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
AFFECTED VENDORS Linux
AFFECTED PRODUCTS Kernel
VULNERABILITY DETAILS

This vulnerability allows remote attackers to create a denial-of-service condition on affected installations of Linux Kernel. Authentication is not required to exploit this vulnerability.

The specific flaw exists within the handling of SMB2_NEGOTIATE commands. The issue results from the lack of memory release after its effective lifetime. An attacker can leverage this vulnerability to create a denial-of-service condition on the system.

ADDITIONAL DETAILS Linux has issued an update to correct this vulnerability. More details can be found at:
https://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.15.61
DISCLOSURE TIMELINE
  • 2022-07-26 - Vulnerability reported to vendor
  • 2022-12-22 - Coordinated public release of advisory
  • 2023-01-23 - Advisory Updated
CREDIT Arnaud Gatignol, Quentin Minster, Florent Saudel, Guillaume Teissier (@thalium_team)
BACK TO ADVISORIES