CVE-2024-0565

Published Jan 15, 2024

Last updated 11 days ago

Overview

Description
An out-of-bounds memory read flaw was found in receive_encrypted_standard in fs/smb/client/smb2ops.c in the SMB Client sub-component in the Linux Kernel. This issue occurs due to integer underflow on the memcpy length, leading to a denial of service.
Source
secalert@redhat.com
NVD status
Modified

Risk scores

CVSS 3.1

Type
Primary
Base score
7.4
Impact score
5.9
Exploitability score
1.5
Vector string
CVSS:3.1/AV:A/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
Severity
HIGH

Weaknesses

secalert@redhat.com
CWE-191
nvd@nist.gov
CWE-191

Social media

Hype score
Not currently trending

Configurations