CVE-2023-6610

smb: client: fix potential OOB in smb2_dump_detail()

References

https://bugzilla.kernel.org/show_bug.cgi?id=218219
https://bugzilla.redhat.com/show_bug.cgi?id=2253614

Notes

 bwh> Introduced in 3.6 by commit 093b2bdad322 "CIFS: Make
 bwh> demultiplex_thread work with SMB2 code".  We don't enable
 bwh> CONFIG_CIFS_DEBUG2 so only custom kernels are affected.
 carnil> For 6.6.y fixed as well in 6.6.13.

Bugs

Status

Branch	Status
4.19-buster-security	needed
4.19-upstream-stable	needed
5.10-bullseye-security	needed
5.10-upstream-stable	needed
6.1-bookworm-security	released (6.1.76-1)
6.1-upstream-stable	released (6.1.74) [5411e3292792be7dafd1fe948a87e3ca29c1f550]
6.6-upstream-stable	unknown
6.8-upstream-stable	unknown
sid	released (6.6.13-1)
upstream	released (6.7-rc7) [567320c46a60a3c39b69aa1df802d753817a3f86]