VYPR
High severity7.1NVD Advisory· Published Aug 16, 2025· Updated Jun 17, 2026

CVE-2023-3865

CVE-2023-3865

Description

In the Linux kernel, the following vulnerability has been resolved:

ksmbd: fix out-of-bound read in smb2_write

ksmbd_smb2_check_message doesn't validate hdr->NextCommand. If ->NextCommand is bigger than Offset + Length of smb2 write, It will allow oversized smb2 write length. It will cause OOB read in smb2_write.

Affected products

2
  • Linux/Kernelllm-fuzzy2 versions
    (expand)+ 1 more
    • (no CPE)
    • (no CPE)range: 5.15

Patches

Vulnerability mechanics

References

4

News mentions

0

No linked articles in our index yet.