Critical Linux Vulnerability Found to Impact SMB Servers

Dec 27, 2022

A Linux vulnerability with a CVSS score of 10 has been found to affect SMB servers and can lead to remote code execution.

A new flaw has been discovered in the processing of SMB2_TREE_DISCONNECT commands which can lead to remote code execution in servers with ksmbd enabled. KSMBD is an in-kernel SMB file server that was mostly written by a team at Samsung Electronics that was merged into the 5.15 kernel on August 29, 2021. This kernel server implements the SMB3 protocol in kernel space for the sharing of files over a network.

According to the Zero Day Initiative, “The specific flaw exists within the processing of SMB2_TREE_DISCONNECT commands. The issue results from the lack of validating the existence of an object prior to performing operations on the object. An attacker can leverage this vulnerability to execute code in the context of the kernel.”

This new vulnerability was discovered back in July 2022 but was only disclosed to the public on December 22, 2022. The good news is twofold: First, the vulnerability has been patched, and second, most are still using SMB and are not affected by this vulnerability. Even so, it’s critical that you apply the patch for kernel 5.15.

Related content

  • Critical Escalation Vulnerability Found in the Linux Kernel

    A new local privilege escalation vulnerability has been discovered in the Linux kernel and users are encouraged to upgrade/patch immediately.

  • News

    GitHub offers free private repositories, Linus Torvalds welcomes 2019 with Linux 5, SQLite database vulnerable, hacks abound, Kubernetes vulnerability found and fixed, and Dolphin announces new switch for composable architectures. 

  • Debian, Ubuntu, and Other Distros are Leaving Users Vulnerable

    A security researcher says Linux vendors wait too long to patch the kernel.

  • Meltdown and Spectre

    The blatant security holes known as Meltdown and Spectre, which are built into the computer hardware, are likely to keep us busy for the next few years. How is the Linux community addressing this unexpected challenge?

  • News

    In the news: Microsoft Expands Their Windows Subsystem for Linux Offerings with AlmaLinux; Debian 11.3 Released with Numerous Bug and Security Fixes; The First Alpha of Asahi Linux Is Available; Zorin OS 16.1 Released with a New Kernel for Better Hardware Compatibility; Red Hat Adds Common Criteria Certification for RHEL 8.2; and Linux Kernel 5.17 Has Finally Arrived.

comments powered by Disqus

Issue 268/2023

Buy this issue as a PDF

Digital Issue: Price $12.99
(incl. VAT)

Subscribe to our Linux Newsletters
Find Linux and Open Source Jobs
Subscribe to our ADMIN Newsletters
Find SysAdmin Jobs

News