A flaw was found in the Linux kernels ksmbd, a high-performance in-kernel SMB server. The specific flaw exists within the handling of SMB2_SESSION_SETUP commands. The issue results from the lack of control of resource consumption. An attacker can leverage this vulnerability to create a denial-of-service condition on the system.
The product does not sufficiently track and release allocated memory after it has been used, which slowly consumes remaining memory.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Linux_kernel | Linux | 5.15 (including) | 6.1.29 (including) |
Linux_kernel | Linux | 6.2 (including) | 6.2.16 (excluding) |
Linux_kernel | Linux | 6.3 (including) | 6.3.2 (excluding) |