#VU71095 Heap-based buffer overflow in Linux kernel - CVE-2023-0210


Vulnerability identifier: #VU71095

Vulnerability risk: Medium

CVSSv4.0: 6.6 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Green]

CVE-ID: CVE-2023-0210

CWE-ID: CWE-122

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
Linux kernel
Operating systems & Components / Operating system

Vendor: Linux Foundation

Description

The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to a boundary error within the ksmbd_decode_ntlmssp_auth_blob() function in ksmbd when handling NTLMv2 authentication. A remote attacker can send specially crafted data to ksmbd, trigger a heap-based buffer overflow and perform a denial of service (DoS) attack.

Mitigation
Cybersecurity Help is currently unaware of any official solution to address this vulnerability.

Vulnerable software versions

Linux kernel: All versions

External links
https://seclists.org/oss-sec/2023/q1/4

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.


Latest bulletins with this vulnerability


Ubuntu update for linux-gcp
Ubuntu update for linux-ibm
Ubuntu update for linux
Ubuntu update for linux-intel-iotg
Ubuntu update for linux-gke
Ubuntu update for linux
Ubuntu update for linux-oem-6.1
Slackware Linux update for kernel
openEuler 22.03 LTS update for kernel
openEuler 22.03 LTS SP1 update for kernel