CVE-2024-26592 | Linux Kernel up to 6.1.74/6.6.13/6.7.1 ksmbd ksmbd_tcp_new_connection use after free

Inserito da Angelo Barbosa | Feb 22, 2024 | CVE

A vulnerability, which was classified as critical, has been found in Linux Kernel up to 6.1.74/6.6.13/6.7.1. Affected by this issue is the function ksmbd_tcp_new_connection of the component ksmbd. The manipulation leads to use after free.

This vulnerability is handled as CVE-2024-26592. The attack needs to be done within the local network. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-26592 | Linux Kernel up to 6.1.74/6.6.13/6.7.1 ksmbd ksmbd_tcp_new_connection use after free

Post correlati

CVE-2022-48771 | Linux Kernel up to 5.16.3 File Descriptor put_unused_fd file descriptor consumption

CVE-2024-3199 | Plus Addons for Elementor Plugin up to 5.4.2 on WordPress Countdown Widget cross site scripting

CVE-2024-26001 | Phoenix Contact CHARX SEC-3150 up to 1.5.0 MQTT Stack out-of-bounds (VDE-2024-011)

CVE-2024-8137 | SourceCodester Record Management System 1.0 search_user.php search cross site scripting