Alpaquita LinuxStreamSecurity Advisory
Search Cve

CVE-2024-0565

Published: January 16, 2024Last modified: July 15, 2025

Description

An out-of-bounds memory read flaw was found in receive_encrypted_standard in fs/smb/client/smb2ops.c in the SMB Client sub-component in the Linux Kernel. This issue occurs due to integer underflow on the memcpy length, leading to a denial of service.

Severity score breakdown

ParameterValue
Base score7.4
Attack VectorADJACENT_NETWORK
Attack complexityLOW
Privileges requiredLOW
User interactionREQUIRED
ScopeUNCHANGED
ConfidentialityHIGH
Integrity impactHIGH
Availability impactHIGH
VectorCVSS:3.1/AV:A/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H

Status

ProductReleasePackageStatus
Alpaquita Linux23 LTSlinux-ltsFixed (6.1.74-r0)
Streamlinux-ltsFixed (6.1.74-r0)

References

ON THIS PAGE