A flaw was found in the Linux kernel's ksmbd, a high-performance in-kernel SMB server. The specific flaw exists within the processing of SMB2_SESSION_SETUP and SMB2_LOGOFF commands. The issue results from the lack of proper locking when performing operations on an object. An attacker can leverage this vulnerability to execute code in the context of the kernel.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: redhat

Published: 2023-07-24T15:19:26.923Z

Updated: 2024-08-02T15:10:23.977Z

Reserved: 2023-05-05T10:00:07.896Z

Link: CVE-2023-32257

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Analyzed

Published: 2023-07-24T16:15:11.680

Modified: 2024-08-22T20:30:50.603

Link: CVE-2023-32257

cve-icon Redhat

Severity : Important

Publid Date: 2023-05-04T00:00:00Z

Links: CVE-2023-32257 - Bugzilla