Fixed
Created: Apr 2, 2025
Updated: Apr 11, 2025
Resolved Date: Apr 11, 2025
Found In Version: 10.24.33.1
Severity: Standard
Applicable for: Wind River Linux LTS 24
Component/s: Kernel
In the Linux kernel, the following vulnerability has been resolved:
ksmbd: fix out-of-bounds in parse_sec_desc()
If osidoffset, gsidoffset and dacloffset could be greater than smb_ntsd
struct size. If it is smaller, It could cause slab-out-of-bounds.
And when validating sid, It need to check it included subauth array size.
CREATE(Triage):(User=admin) CVE-2025-21946 (https://nvd.nist.gov/vuln/detail/CVE-2025-21946)
