CVE-2023-4458

CVSS V2 None CVSS V3 None
Description
A flaw was found within the parsing of extended attributes in the kernel ksmbd module. The issue results from the lack of proper validation of user-supplied data, which can result in a read past the end of an allocated buffer. An attacker can leverage this to disclose sensitive information on affected installations of Linux. Only systems with ksmbd enabled are vulnerable to this CVE.
Overview
  • CVE ID
  • CVE-2023-4458
  • Assigner
  • fedora
  • Vulnerability Status
  • PUBLISHED
  • Published Version
  • 2024-11-14T12:09:13.182Z
  • Last Modified Date
  • 2024-11-14T19:33:07.493Z
References
History
Created Old Value New Value Data Type Notes
2024-11-15 13:00:30 Added to TrackCVE