ksmbd: fix null pointer dereference in alloc_preauth_hash() - kernel

diff options

author	Namjae Jeon <[email protected]>	2025-04-02 00:11:23 +0000
committer	Steve French <[email protected]>	2025-04-02 04:02:20 +0000
commit	c8b5b7c5da7d0c31c9b7190b4a7bba5281fc4780 (patch)
tree	b5210b7cc66fd3799c5ca09f183fff8cd4309373 /tools/lib/bpf/linker.c
parent	ksmbd: validate zero num_subauth before sub_auth is accessed (diff)
download	kernel-c8b5b7c5da7d0c31c9b7190b4a7bba5281fc4780.tar.gz kernel-c8b5b7c5da7d0c31c9b7190b4a7bba5281fc4780.zip

ksmbd: fix null pointer dereference in alloc_preauth_hash()

The Client send malformed smb2 negotiate request. ksmbd return error response. Subsequently, the client can send smb2 session setup even thought conn->preauth_info is not allocated. This patch add KSMBD_SESS_NEED_SETUP status of connection to ignore session setup request if smb2 negotiate phase is not complete. Cc: [email protected] Tested-by: Steve French <[email protected]> Reported-by: [email protected] # ZDI-CAN-26505 Signed-off-by: Namjae Jeon <[email protected]> Signed-off-by: Steve French <[email protected]>

Diffstat (limited to 'tools/lib/bpf/linker.c')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: