#VU77497 Race condition in Linux kernel - CVE-2023-32250


Vulnerability identifier: #VU77497

Vulnerability risk: High

CVSSv4.0: 7.2 [CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Amber]

CVE-ID: CVE-2023-32250

CWE-ID: CWE-362

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
Linux kernel
Operating systems & Components / Operating system

Vendor: Linux Foundation

Description

The vulnerability allows a remote attacker to compromise the affected system.

The vulnerability exists due to a race condition within the fs/ksmbd/connection.c in ksmbd in Linux kernel when processing SMB2_SESSION_SETUP commands. A remote attacker can exploit the race by sending concurrent session setup and logoff request and execute arbitrary code on the system.

Mitigation
Install updates from vendor's website.

Vulnerable software versions

Linux kernel: before 6.4, 6.4

External links
https://www.zerodayinitiative.com/advisories/ZDI-23-698/
https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=f5c779b7ddbda30866cf2a27c63e34158f858c73
https://bugzilla.redhat.com/show_bug.cgi?id=2208849

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.


Latest bulletins with this vulnerability


Ubuntu update for linux-azure
Ubuntu update for linux-intel-iotg-5.15
Ubuntu update for linux-lowlatency
Ubuntu update for linux-intel-iotg
Ubuntu update for linux
Ubuntu update for linux-gcp
Ubuntu update for linux-azure
Ubuntu update for linux
Debian update for linux
Ubuntu update for linux-oem-6.1