ACK: [UBUNTU Jammy 0/1] CVE-2022-47940
Tim Gardner
tim.gardner at canonical.com
Tue Jan 3 15:16:44 UTC 2023
On 1/3/23 7:32 AM, Thadeu Lima de Souza Cascardo wrote:
> [Impact]
> A ksmbd authenticated attacker can exploit an out-of-bounds read to
> potentially leak system information.
>
> [Potential regression]
> ksmbd may regress.
>
> Marios Makassikis (1):
> ksmbd: validate length in smb2_write()
>
> fs/ksmbd/smb2pdu.c | 42 ++++++++++++++++--------------------------
> 1 file changed, 16 insertions(+), 26 deletions(-)
>
Acked-by: Tim Gardner <tim.gardner at canonical.com>
The backport remains true to the intent of the upstream original commit.
--
-----------
Tim Gardner
Canonical, Inc
More information about the kernel-team
mailing list