Name of the Vulnerable Software and Affected Versions ksmbd versions prior to v6.0.19

Description The issue is related to the ksmbd decode ntlmssp auth blob function, where the nt len is not properly checked to be at least CIFS ENCPWD SIZE. This could potentially lead to security vulnerabilities, although the actual impact and attack plausibility have not yet been proven.

Recommendations For versions prior to v6.0.19, update to Linux Kernel version v6.0.19 or later to resolve the issue. As a temporary workaround, consider restricting access to the ksmbd decode ntlmssp auth blob function until a patch is available.