[PATCH OLK-5.10 0/4] Fixed 4 CVEs belonging to the ksmbd

11 Sep 2023


      CVE-2023-32247
CVE-2023-32251
CVE-2023-32253
CVE-2023-32249
Namjae Jeon (4):
  ksmbd: destroy expired sessions
  ksmbd: block asynchronous requests when making a delay on session
    setup
  ksmbd: fix deadlock in ksmbd_find_crypto_ctx()
  ksmbd: not allow guest user on multichannel
fs/ksmbd/auth.c              | 19 +++++-----
 fs/ksmbd/mgmt/user_session.c | 68 ++++++++++++++++++++----------------
 fs/ksmbd/mgmt/user_session.h |  1 +
 fs/ksmbd/smb2pdu.c           | 17 +++++++--
 fs/ksmbd/smb2pdu.h           |  2 ++
 5 files changed, 65 insertions(+), 42 deletions(-)
-- 
2.34.3

2024

2023

2022

2021

2020

2019

[PATCH OLK-5.10 0/4] Fixed 4 CVEs belonging to the ksmbd