CVE-2023-52755: ksmbd: fix slab out of bounds write in smb_inherit_dacl()

Description

In the Linux kernel, the following vulnerability has been resolved:

ksmbd: fix slab out of bounds write in smb_inherit_dacl()

slab out-of-bounds write is caused by that offsets is bigger than pntsd
allocation size. This patch add the check to validate 3 offsets using
allocation size.

Classification

CVE ID: CVE-2023-52755

Affected Products

Vendor: Linux

Product: Linux

Exploit Prediction Scoring System (EPSS)

EPSS Score: 0.05% (probability of being exploited)

EPSS Percentile: 18.38% (scored less or equal to compared to others)

EPSS Date: 2025-02-03 (when was this score calculated)

References

https://git.kernel.org/stable/c/aaf0a07d60887d6c36fc46a24de0083744f07819
https://git.kernel.org/stable/c/8387c94d73ec66eb597c7a23a8d9eadf64bfbafa
https://git.kernel.org/stable/c/09d9d8b40a3338193619c14ed4dc040f4f119e70
https://git.kernel.org/stable/c/712e01f32e577e7e48ab0adb5fe550646a3d93cb
https://git.kernel.org/stable/c/eebff19acaa35820cb09ce2ccb3d21bee2156ffb

Timeline

2024-12-20 00:31:53 UTC
CVE

ksmbd: fix slab out of bounds write in smb_inherit_dacl()