Unrated severityNVD Advisory· Published Dec 27, 2024· Updated Nov 3, 2025
ksmbd: fix Out-of-Bounds Read in ksmbd_vfs_stream_read
CVE-2024-56627
Description
In the Linux kernel, the following vulnerability has been resolved:
ksmbd: fix Out-of-Bounds Read in ksmbd_vfs_stream_read
An offset from client could be a negative value, It could lead to an out-of-bounds read from the stream_buf. Note that this issue is coming when setting 'vfs objects = streams_xattr parameter' in ksmbd.conf.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
4- osv-coords2 versionspkg:deb/ubuntu/linux-lowlatency@6.11.0-1011.12?arch=source&distro=oracularpkg:deb/ubuntu/linux-raspi@6.11.0-1010.10?arch=source&distro=oracular
< 6.11.0-1011.12+ 1 more
- (no CPE)range: < 6.11.0-1011.12
- (no CPE)range: < 6.11.0-1010.10
Patches
Vulnerability mechanics
References
5- git.kernel.org/stable/c/27de4295522e9a33e4a3fc72f7b8193df9eebe41mitre
- git.kernel.org/stable/c/6bd1bf0e8c42f10a9a9679a4c103a9032d30594dmitre
- git.kernel.org/stable/c/81eed631935f2c52cdaf6691c6d48e0b06e8ad73mitre
- git.kernel.org/stable/c/de4d790dcf53be41736239d7ee63849a16ff5d10mitre
- git.kernel.org/stable/c/fc342cf86e2dc4d2edb0fc2ff5e28b6c7845adb9mitre
News mentions
0No linked articles in our index yet.