The Linux kernel before version 4.11 is vulnerable to a NULL pointer dereference in fs/cifs/cifsencrypt.c:setup_ntlmv2_rsp() that allows an attacker controlling a CIFS server to kernel panic a client that has this server mounted, because an empty TargetInfo field in an NTLMSSP setup negotiation response is mishandled during session recovery.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: redhat
Published: 2018-03-02T08:00:00
Updated: 2024-08-05T03:51:47.336Z
Reserved: 2017-12-04T00:00:00
Link: CVE-2018-1066
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2018-03-02T08:29:00.337
Modified: 2019-04-23T13:37:27.487
Link: CVE-2018-1066
Redhat