CVE-2018-1066

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 4.11

Description: The issue is related to a NULL pointer dereference in the setup ntlmv2 rsp() function, located in fs/cifs/cifsencrypt.c. This occurs when an empty TargetInfo field in an NTLMSSP setup negotiation response is mishandled during session recovery. An attacker controlling a CIFS server can exploit this to cause a kernel panic on a client system that has the server mounted. The vulnerability allows a remote attacker to trigger a kernel panic on a vulnerable system when it connects to a controlled CIFS resource.

Recommendations: For Linux kernel versions prior to 4.11, update to version 4.11 or later to resolve the issue. As a temporary workaround, consider restricting access to CIFS servers to minimize the risk of exploitation. Avoid using the setup ntlmv2 rsp() function until a patch is available.