blob: 2f1807355c3f06cdf85f410022b50691f5e28d80 (
plain) (
blame)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
|
Description: ksmbd: validate session id and tree id in the compound request
References:
https://www.zerodayinitiative.com/advisories/ZDI-23-979/
https://lore.kernel.org/all/20230626180806.105257976@linuxfoundation.org/
Notes:
Bugs:
upstream: released (6.4) [5005bcb4219156f1bf7587b185080ec1da08518e]
6.1-upstream-stable: released (6.1.36) [854156d12caa9d36de1cf5f084591c7686cc8a9d]
5.10-upstream-stable: N/A "Vulnerable code not present"
4.19-upstream-stable: N/A "Vulnerable code not present"
sid: released (6.3.11-1)
6.1-bookworm-security: released (6.1.37-1)
5.10-bullseye-security: N/A "Vulnerable code not present"
4.19-buster-security: N/A "Vulnerable code not present"
|
