ksmbd: fix null pointer dereference in alloc_preauth_hash() - lwn.git - Linux kernel documentation tree maintained by Jonathan Corbet

diff options

author	Namjae Jeon <linkinjeon@kernel.org>	2025-04-02 09:11:23 +0900
committer	Steve French <stfrench@microsoft.com>	2025-04-01 23:02:20 -0500
commit	c8b5b7c5da7d0c31c9b7190b4a7bba5281fc4780 (patch)
tree	b5210b7cc66fd3799c5ca09f183fff8cd4309373 /tools/perf/scripts/python/call-graph-from-sql.py
parent	bf21e29d78cd2c2371023953d9c82dfef82ebb36 (diff)
download	lwn-c8b5b7c5da7d0c31c9b7190b4a7bba5281fc4780.tar.gz lwn-c8b5b7c5da7d0c31c9b7190b4a7bba5281fc4780.zip

ksmbd: fix null pointer dereference in alloc_preauth_hash()

The Client send malformed smb2 negotiate request. ksmbd return error response. Subsequently, the client can send smb2 session setup even thought conn->preauth_info is not allocated. This patch add KSMBD_SESS_NEED_SETUP status of connection to ignore session setup request if smb2 negotiate phase is not complete. Cc: stable@vger.kernel.org Tested-by: Steve French <stfrench@microsoft.com> Reported-by: zdi-disclosures@trendmicro.com # ZDI-CAN-26505 Signed-off-by: Namjae Jeon <linkinjeon@kernel.org> Signed-off-by: Steve French <stfrench@microsoft.com>

Diffstat (limited to 'tools/perf/scripts/python/call-graph-from-sql.py')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: