CVE-2022-50859
Gravedad:
Pendiente de análisis
Tipo:
No Disponible / Otro tipo
Fecha de publicación:
30/12/2025
Última modificación:
31/12/2025
Descripción
*** Pendiente de traducción *** In the Linux kernel, the following vulnerability has been resolved:<br />
<br />
cifs: Fix the error length of VALIDATE_NEGOTIATE_INFO message<br />
<br />
Commit d5c7076b772a ("smb3: add smb3.1.1 to default dialect list")<br />
extend the dialects from 3 to 4, but forget to decrease the extended<br />
length when specific the dialect, then the message length is larger<br />
than expected.<br />
<br />
This maybe leak some info through network because not initialize the<br />
message body.<br />
<br />
After apply this patch, the VALIDATE_NEGOTIATE_INFO message length is<br />
reduced from 28 bytes to 26 bytes.
Impacto
Referencias a soluciones, herramientas e información
- https://git.kernel.org/stable/c/60480291c1fcafad8425d93f771b5bcc2bd398b4
- https://git.kernel.org/stable/c/9312e04b6c6bc46354ecd0cc82052a2b3df0b529
- https://git.kernel.org/stable/c/943eb0ede74ecd609fdfd3f0b83e0d237613e526
- https://git.kernel.org/stable/c/d0050ec3ebbcb3451df9a65b8460be9b9e02e80c
- https://git.kernel.org/stable/c/e98ecc6e94f4e6d21c06660b0f336df02836694f
- https://git.kernel.org/stable/c/fada9b8c95c77bb46b89e18117405bc90fce9f74