Buffer Length Validation Error in Linux Kernel's ksmbd Related to SMB2 File Operations
CVE-2023-4130

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 16 August 2025

What is CVE-2023-4130?

A vulnerability exists within the ksmbd component of the Linux kernel, which mishandles the validation of the next length in the file's extended attribute buffer during SMB2 file operations. The issue arises specifically when multiple smb2_ea_info buffers are present in a FILE_FULL_EA_INFORMATION request. Inadequate validation of the buffer length prior to accessing the subsequent entry can lead to improper memory access and potential exploitation. This flaw highlights the need for stringent checks based on the buffer length versus offsets derived from previous entries to ensure system integrity and security.

Affected Version(s)

Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2

Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 4bf629262f9118ee91b1c3a518ebf2b3bcb22180

References

https://git.kernel.org/stable/c/aeb974907642be095e38ecb1a...

https://git.kernel.org/stable/c/f339d76a3a972601d0738b881...

https://git.kernel.org/stable/c/4bf629262f9118ee91b1c3a51...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Aug 16, 2025
Vulnerability Reserved
Aug 3, 2023