ksmbd: fix null pointer dereference in alloc_preauth_hash() - linux/linux-stable.git

diff options

author	Namjae Jeon <linkinjeon@kernel.org>	2025-04-02 09:11:23 +0900
committer	Greg Kroah-Hartman <gregkh@linuxfoundation.org>	2025-09-19 16:32:08 +0200
commit	cce57cd8c5dead24127cf2308fdd60fcad2d6ba6 (patch)
tree	bcaa0c99520fa7fa5182cd614c1af0b80d02a41c /drivers/gpu/drm/amd/amdgpu/amdgpu_ring.c
parent	ce807c4c88d2ec427f0efd573b28a474929b309f (diff)

ksmbd: fix null pointer dereference in alloc_preauth_hash()

commit c8b5b7c5da7d0c31c9b7190b4a7bba5281fc4780 upstream. The Client send malformed smb2 negotiate request. ksmbd return error response. Subsequently, the client can send smb2 session setup even thought conn->preauth_info is not allocated. This patch add KSMBD_SESS_NEED_SETUP status of connection to ignore session setup request if smb2 negotiate phase is not complete. Cc: stable@vger.kernel.org Tested-by: Steve French <stfrench@microsoft.com> Reported-by: zdi-disclosures@trendmicro.com # ZDI-CAN-26505 Signed-off-by: Namjae Jeon <linkinjeon@kernel.org> Signed-off-by: Steve French <stfrench@microsoft.com> Signed-off-by: Jan Alexander Preissler <akendo@akendo.eu> Signed-off-by: Sujana Subramaniam <sujana.subramaniam@sap.com> Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>

Diffstat (limited to 'drivers/gpu/drm/amd/amdgpu/amdgpu_ring.c')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: