CVE-2022-47939

critical

Description

An issue was discovered in ksmbd in the Linux kernel 5.15 through 5.19 before 5.19.2. fs/ksmbd/smb2pdu.c has a use-after-free and OOPS for SMB2_TREE_DISCONNECT.

References

https://github.com/torvalds/linux/commit/cf6531d98190fa2cf92a6d8bbc8af0a4740a223c

https://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.19.2

https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=cf6531d98190fa2cf92a6d8bbc8af0a4740a223c

http://www.openwall.com/lists/oss-security/2022/12/23/10

https://www.zerodayinitiative.com/advisories/ZDI-22-1690/

Details

Source: MITRE

Published: 2022-12-23

Updated: 2023-01-23

Type: CWE-416