Security Advisory

CVE-2024-26811

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-04-08 10:02:18
Last updated 2026-05-11 20:04:38
Assigner Linux
State PUBLISHED

Description

In the Linux kernel, the following vulnerability has been resolved: ksmbd: validate payload size in ipc response If installing malicious ksmbd-tools, ksmbd.mountd can return invalid ipc response to ksmbd kernel server. ksmbd should validate payload size of ipc response from ksmbd.mountd to avoid memory overrun or slab-out-of-bounds. This patch validate 3 ipc response that has payload.