CVE-2023-32255

Kernel: memory leak via ksmbd session setup request with unknown ntlmssp message type

Description

A flaw was found in the Linux kernel's ksmbd component. A memory leak can occur if a client sends a session setup request with an unknown NTLMSSP message type, potentially leading to resource exhaustion.

References

Link	Tags
https://access.redhat.com/security/cve/CVE-2023-32255	vdb entry
https://bugzilla.redhat.com/show_bug.cgi?id=2385884	issue tracking
https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=6d7cb549c2ca20e1f07593f15e936fd54b763028
https://www.zerodayinitiative.com/advisories/ZDI-23-703/

Frequently Asked Questions

What is the severity of CVE-2023-32255?: CVE-2023-32255 has been scored as a medium severity vulnerability.
How to fix CVE-2023-32255?: To fix CVE-2023-32255, make sure you are using an up-to-date version of the affected component(s) by checking the vendor release notes. As for now, there are no other specific guidelines available.
Is CVE-2023-32255 being actively exploited in the wild?: As for now, there are no information to confirm that CVE-2023-32255 is being actively exploited. According to its EPSS score, there is a ~0% probability that this vulnerability will be exploited by malicious actors in the next 30 days.
What software or system is affected by CVE-2023-32255?: CVE-2023-32255 affects Red Hat Red Hat Enterprise Linux 10, Red Hat Red Hat Enterprise Linux 6, Red Hat Red Hat Enterprise Linux 7, Red Hat Red Hat Enterprise Linux 7, Red Hat Red Hat Enterprise Linux 8, Red Hat Red Hat Enterprise Linux 8, Red Hat Red Hat Enterprise Linux 9, Red Hat Red Hat Enterprise Linux 9.

Description

Category

CWE-772 – Missing Release of Resource after Effective Lifetime

References

Frequently Asked Questions