]> www.infradead.org Git - nvme.git/commit
projects / nvme.git / commit
summary | shortlog | log | commit | commitdiff | tree
(parent: bf21e29) | patch
ksmbd: fix null pointer dereference in alloc_preauth_hash()
authorNamjae Jeon <linkinjeon@kernel.org>
Wed, 2 Apr 2025 00:11:23 +0000 (09:11 +0900)
committerSteve French <stfrench@microsoft.com>
Wed, 2 Apr 2025 04:02:20 +0000 (23:02 -0500)
commitc8b5b7c5da7d0c31c9b7190b4a7bba5281fc4780
treeb5210b7cc66fd3799c5ca09f183fff8cd4309373tree
parentbf21e29d78cd2c2371023953d9c82dfef82ebb36commit | diff
ksmbd: fix null pointer dereference in alloc_preauth_hash()

The Client send malformed smb2 negotiate request. ksmbd return error
response. Subsequently, the client can send smb2 session setup even
thought conn->preauth_info is not allocated.
This patch add KSMBD_SESS_NEED_SETUP status of connection to ignore
session setup request if smb2 negotiate phase is not complete.

Cc: stable@vger.kernel.org
Tested-by: Steve French <stfrench@microsoft.com>
Reported-by: zdi-disclosures@trendmicro.com # ZDI-CAN-26505
Signed-off-by: Namjae Jeon <linkinjeon@kernel.org>
Signed-off-by: Steve French <stfrench@microsoft.com>
fs/smb/server/connection.h diff | blob | history
fs/smb/server/mgmt/user_session.c diff | blob | history
fs/smb/server/smb2pdu.c diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.