CVE-2010-2248 (retired)

Priority
Description
fs/cifs/cifssmb.c in the CIFS implementation in the Linux kernel before
2.6.34-rc4 allows remote attackers to cause a denial of service (panic) via
an SMB response packet with an invalid CountHigh value, as demonstrated by
a response from an OS/2 server, related to the CIFSSMBWrite and
CIFSSMBWrite2 functions.
Ubuntu-Description
Suresh Jayaraman discovered that CIFS did not correctly validate certain
response packats. A remote attacker could send specially crafted traffic
that would crash the system, leading to a denial of service.
Assigned-to
bradf
Package
Upstream:needs-triage
Package
Upstream:needs-triage
Package
Upstream:needs-triage
More Information

Updated: 2019-03-26 11:52:06 UTC (commit ccdecfcf0fead22bd291e5f4ea745a46872dcb15)