PT-2024-21596 · Linux+5 · Linux Kernel+5

Xuanzhe Yu

Published

2024-03-16

Updated

2026-05-26

CVE-2024-26954

CVSS v3.1

7.1

High

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A slab-out-of-bounds read can occur in the Linux kernel when the ->NameOffset of smb2 create req is smaller than the Buffer offset of smb2 create req. This issue is resolved by setting the minimum value of the name offset to the buffer offset to validate the name length of smb2 create req(). The vulnerability is related to the ksmbd component and the smb strndup from utf16() function.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

DoS

LPE

Out of bounds Read

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-125

Related Identifiers

ALSA-2025_12746

ALSA-2025_12752

ALSA-2025_12753

ALSA-2025_16880

ALT-PU-2025-12647

AZL-57714

BDU:2025-07830

CVE-2024-26954

DLA-4008-1

DSA-5818-1

OESA-2024-1737

OESA-2024-1738

OESA-2025-1093

OESA-2025-1096

OESA-2025-1097

USN-6816-1

USN-6817-1

USN-6817-2

USN-6817-3

USN-6878-1

Affected Products

Alt Linux

Astra Linux

Linuxmint

Linux Kernel

Red Os

Ubuntu

PT-2024-21596 · Linux+5 · Linux Kernel+5

CVE-2024-26954

Weakness Enumeration

Related Identifiers

Affected Products

References · 498