PT-2024-6940 · Linux+5 · Linux Kernel+5

Steve French

Published

2024-08-29

Updated

2025-10-13

CVE-2024-46795

CVSS v3.1

5.5

Medium

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description The issue is related to a null pointer dereference error in the ksmbd component of the Linux kernel. This error occurs when a reused connection is used for a binding session, and the conn->binding remains true, causing generate preauth hash() not to set sess->Preauth HashValue, which is then used as a material to create an encryption key in ksmbd gen smb311 encryptionkey(). This results in a null pointer dereference error from crypto shash update(). The vulnerability can lead to a kernel NULL pointer dereference.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

NULL Pointer Dereference

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-476

Related Identifiers

ALSA-2025_16880

ALT-PU-2024-12968

ALT-PU-2024-12970

ALT-PU-2024-13121

ALT-PU-2024-13166

ALT-PU-2024-13260

ALT-PU-2024-13979

ALT-PU-2024-14046

AZL-49383

BDU:2024-08164

CVE-2024-46795

DLA-4008-1

DSA-5782-1

MGASA-2024-0316

MGASA-2024-0318

OESA-2024-2255

OESA-2024-2257

OESA-2024-2258

OESA-2024-2296

USN-7100-1

USN-7100-2

USN-7123-1

USN-7144-1

USN-7154-1

USN-7154-2

USN-7155-1

USN-7156-1

USN-7194-1

USN-7196-1

Affected Products

Alt Linux

Astra Linux

Linuxmint

Linux Kernel

Red Os

Ubuntu

PT-2024-6940 · Linux+5 · Linux Kernel+5

CVE-2024-46795

Weakness Enumeration

Related Identifiers

Affected Products

References · 1023