CVE-2023-3867 – Kerberos SMB Out-of-Bounds Read Vulnerability

CVE ID : CVE-2023-3867

Published : Aug. 16, 2025, 2:15 p.m. | 1 hour, 46 minutes ago

Description : In the Linux kernel, the following vulnerability has been resolved:

ksmbd: fix out of bounds read in smb2_sess_setup

ksmbd does not consider the case of that smb2 session setup is
in compound request. If this is the second payload of the compound,
OOB read issue occurs while processing the first payload in
the smb2_sess_setup().

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…