Security Advisory

CVE-2023-38428

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-07-17 00:00:00

Last updated 2024-10-15 18:33:28

Assigner mitre

State PUBLISHED

Description

An issue was discovered in the Linux kernel before 6.3.4. fs/ksmbd/smb2pdu.c in ksmbd does not properly check the UserName value because it does not consider the address of security buffer, leading to an out-of-bounds read.

← Browse all CVEs View on cve.org ↗