Re: [5.15.y PATCH 0/4] ksmbd: ZDI Vulnerability patches for 5.15.y

20 Jul 2023


      On Thu, Jul 20, 2023 at 10:23:27PM +0900, Namjae Jeon wrote:
...
These are ZDI Vulnerability patches that was not applied in linux 5.15
stable kernel.
Namjae Jeon (4):
  ksmbd: use ksmbd_req_buf_next() in ksmbd_smb2_check_message()
  ksmbd: validate command payload size
  ksmbd: fix out-of-bound read in smb2_write
  ksmbd: validate session id and tree id in the compound request
fs/ksmbd/server.c   | 33 ++++++++++++++++++++-------------
 fs/ksmbd/smb2misc.c | 38 ++++++++++++++++++++------------------
 fs/ksmbd/smb2pdu.c  | 44 +++++++++++++++++++++++++++++++++++++++-----
 3 files changed, 79 insertions(+), 36 deletions(-)
-- 
2.25.1
All now queued up now, thanks!
greg k-h

2025

2024

2023

2022

2021

2020

2019

2018

2017

Re: [5.15.y PATCH 0/4] ksmbd: ZDI Vulnerability patches for 5.15.y