CVE-2024-26811 Information

Description

In the Linux kernel the following vulnerability has been resolved:

ksmbd: validate payload size in ipc response

If installing malicious ksmbd-tools ksmbd.mountd can return invalid ipc response to ksmbd kernel server. ksmbd should validate payload size of ipc response from ksmbd.mountd to avoid memory overrun or slab-out-of-bounds. This patch validate 3 ipc response that has payload.

Reference

https://git.kernel.org/stable/c/a677ebd8ca2f2632ccdecbad7b87641274e15aac