CVE-2023-6606

Published: December 8, 2023Last modified: December 9, 2023

Description

An out-of-bounds read vulnerability was found in smbCalcSize in fs/smb/client/netmisc.c in the Linux Kernel. This issue could allow a local attacker to crash the system or leak internal kernel information.

Severity score breakdown

Status

References

• https://access.redhat.com/errata/RHSA-2024:0723
• https://access.redhat.com/errata/RHSA-2024:0725
• https://access.redhat.com/errata/RHSA-2024:0881
• https://access.redhat.com/errata/RHSA-2024:0897
• https://access.redhat.com/errata/RHSA-2024:1188
• https://access.redhat.com/errata/RHSA-2024:1248
• https://access.redhat.com/errata/RHSA-2024:1404
• https://access.redhat.com/errata/RHSA-2024:2094
• https://access.redhat.com/security/cve/CVE-2023-6606
• https://bugzilla.kernel.org/show_bug.cgi?id=218218
• https://bugzilla.redhat.com/show_bug.cgi?id=2253611
• https://lists.debian.org/debian-lts-announce/2024/01/msg00004.html
• https://lists.debian.org/debian-lts-announce/2024/06/msg00016.html