lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [thread-next>] [day] [month] [year] [list] 
Message-ID: <CAH2r5msxpWx-jGPQZcowF=u5Lum4mYAOJtgVQ=u0vJv13U254w@mail.gmail.com>
Date: Mon, 31 Mar 2025 19:17:11 -0500
From: Steve French <smfrench@...il.com>
To: Linus Torvalds <torvalds@...ux-foundation.org>
Cc: Namjae Jeon <linkinjeon@...nel.org>, LKML <linux-kernel@...r.kernel.org>
Subject: [GIT PULL] ksmbd server fixes

Please pull the following changes since commit
38fec10eb60d687e30c8c6b5420d86e8149f7557:

  Linux 6.14 (2025-03-24 07:02:41 -0700)

are available in the Git repository at:

  git://git.samba.org/ksmbd.git tags/v6.15rc-part1-ksmbd-server-fixes

for you to fetch changes up to ddb7ea36ba7129c2ed107e2186591128618864e1:

  ksmbd: fix r_count dec/increment mismatch (2025-03-27 19:12:00 -0500)

----------------------------------------------------------------
10 ksmbd SMB3 server fixes
- Two fixes for bounds checks of open contexts
- Two multichannel fixes, including one for important UAF
- Oplock/lease break fix for potential ksmbd connection refcount leak
- Security fix to free crypto data more securely
- Fix to enable allowing Kerberos authentication by default
- Two RDMA/smbdirect fixes
- Minor cleanup

This does not include an additional three important fixes for recently
reported problems that are still being tested
----------------------------------------------------------------
Miaoqian Lin (1):
      ksmbd: use aead_request_free to match aead_request_alloc

Namjae Jeon (7):
      ksmbd: make SMB_SERVER_KERBEROS5 enable by default
      ksmbd: add bounds check for durable handle context
      Revert "ksmbd: fix missing RDMA-capable flag for IPoIB device in
ksmbd_rdma_capable_netdev()"
      ksmbd: use ib_device_get_netdev() instead of calling ops.get_netdev
      ksmbd: fix use-after-free in ksmbd_sessions_deregister()
      ksmbd: fix multichannel connection failure
      ksmbd: fix r_count dec/increment mismatch

Norbert Szetei (1):
      ksmbd: add bounds check for create lease context

Thorsten Blum (1):
      ksmbd: Use str_read_write() and str_true_false() helpers

 fs/smb/server/Kconfig             |  2 +-
 fs/smb/server/auth.c              |  2 +-
 fs/smb/server/mgmt/user_session.c | 19 +++++++++++++++++++
 fs/smb/server/mgmt/user_session.h |  2 ++
 fs/smb/server/oplock.c            | 12 ++++++++++--
 fs/smb/server/smb2pdu.c           | 33 ++++++++++++++++++++++++--------
 fs/smb/server/transport_rdma.c    | 41 ++++++++++------------------------------
 7 files changed, 68 insertions(+), 43 deletions(-)

-- 
Thanks,

Steve

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ