lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [thread-next>] [day] [month] [year] [list] 
Date:   Thu, 1 Jun 2023 02:17:46 -0500
From:   Steve French <smfrench@...il.com>
To:     Linus Torvalds <torvalds@...ux-foundation.org>
Cc:     Namjae Jeon <linkinjeon@...nel.org>,
        LKML <linux-kernel@...r.kernel.org>,
        CIFS <linux-cifs@...r.kernel.org>
Subject: [GIT PULL] smb3 server fixes

Please pull the following changes since commit
0d85b27b0cc6b5cf54567c5ad913a247a71583ce:

  Merge tag '6.4-rc3-smb3-client-fixes' of
git://git.samba.org/sfrench/cifs-2.6 (2023-05-25 19:23:18 -0700)

are available in the Git repository at:

  git://git.samba.org/ksmbd.git tags/6.4-rc4-smb3-server-fixes

for you to fetch changes up to 6fe55c2799bc29624770c26f98ba7b06214f43e0:

  ksmbd: call putname after using the last component (2023-05-26 20:27:46 -0500)

----------------------------------------------------------------
Eight server fixes (most also for stable)
- Two fixes for uninitialized pointer reads (rename and link)
- Fix potential UAF in oplock break
- Two fixes for potential out of bound reads in negotiate
- Fix crediting bug
- Two fixes for xfstests (allocation size fix for test 694 and lookup
issue shown by test 464)
----------------------------------------------------------------
Kuan-Ting Chen (2):
      ksmbd: fix slab-out-of-bounds read in smb2_handle_negotiate
      ksmbd: fix multiple out-of-bounds read during context decoding

Namjae Jeon (6):
      ksmbd: fix uninitialized pointer read in ksmbd_vfs_rename()
      ksmbd: fix uninitialized pointer read in smb2_create_link()
      ksmbd: fix credit count leakage
      ksmbd: fix UAF issue from opinfo->conn
      ksmbd: fix incorrect AllocationSize set in smb2_get_info
      ksmbd: call putname after using the last component

 fs/smb/server/oplock.c  | 72
+++++++++++++++++++++++++++++++++++++++++++++++-------------------------
 fs/smb/server/smb2pdu.c | 96
++++++++++++++++++++++++++++++++++++++++++++++--------------------------------------------------
 fs/smb/server/vfs.c     |  9 +++++++--
 3 files changed, 100 insertions(+), 77 deletions(-)

-- 
Thanks,

Steve

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ