www.infradead.org Git - users/dwmw2/linux.git/commit

author	Namjae Jeon <linkinjeon@kernel.org>
	Tue, 2 May 2023 23:26:45 +0000 (08:26 +0900)
committer	Greg Kroah-Hartman <gregkh@linuxfoundation.org>
	Thu, 11 May 2023 14:03:04 +0000 (23:03 +0900)
commit	c3a3259675a6c9626bb9fbd2d84f15bae16ffed4
tree	b26b2727bbb2542004def4bbf3147b1d2b564492	tree
parent	a70751dd7b60eab025e97e19b6b2477c6eaf2bbb	commit \| diff

ksmbd: fix memleak in session setup

commit 6d7cb549c2ca20e1f07593f15e936fd54b763028 upstream.

If client send session setup request with unknown NTLMSSP message type,
session that does not included channel can be created. It will cause
session memleak. because ksmbd_sessions_deregister() does not destroy
session if channel is not included. This patch return error response if
client send the request unknown NTLMSSP message type.

Cc: stable@vger.kernel.org
Reported-by: zdi-disclosures@trendmicro.com # ZDI-CAN-20593
Signed-off-by: Namjae Jeon <linkinjeon@kernel.org>
Signed-off-by: Steve French <stfrench@microsoft.com>
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>