| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <CAH2r5mtvv021NNhBaHt2byQkFvPJ1cJ_oFSog02hOuRX2p8kpQ@mail.gmail.com>
Date: Thu, 5 Dec 2024 10:17:31 -0600
From: Steve French <smfrench@...il.com>
To: Linus Torvalds <torvalds@...ux-foundation.org>
Cc: CIFS <linux-cifs@...r.kernel.org>, LKML <linux-kernel@...r.kernel.org>,
Namjae Jeon <linkinjeon@...nel.org>
Subject: [GIT PULL] ksmbd server fixes
Please pull the following changes since commit
40384c840ea1944d7c5a392e8975ed088ecf0b37:
Linux 6.13-rc1 (2024-12-01 14:28:56 -0800)
are available in the Git repository at:
git://git.samba.org/ksmbd.git tags/v6.13-rc1-ksmbd-server-fixes
for you to fetch changes up to 06a025448b572c3bd78dd23a31488a0907cd9512:
ksmbd: align aux_payload_buf to avoid OOB reads in cryptographic
operations (2024-12-04 19:45:28 -0600)
----------------------------------------------------------------
Four kernel server fixes, most for stable as well
- Three fixes for potential out of bound accesses in read and write paths
(e.g. when alternate data streams enabled)
- GCC 15 build fix
----------------------------------------------------------------
Brahmajit Das (1):
smb: server: Fix building with GCC 15
Jordy Zomer (2):
ksmbd: fix Out-of-Bounds Read in ksmbd_vfs_stream_read
ksmbd: fix Out-of-Bounds Write in ksmbd_vfs_stream_write
Norbert Szetei (1):
ksmbd: align aux_payload_buf to avoid OOB reads in cryptographic
operations
fs/smb/server/smb2pdu.c | 8 +++++++-
fs/smb/server/smb_common.c | 4 ++--
2 files changed, 9 insertions(+), 3 deletions(-)
--
Thanks,
Steve
Powered by blists - more mailing lists