In the Linux kernel, the following vulnerability has been resolved: ksmbd: unset the binding mark of a reused connection Steve French reported null pointer dereference error from sha256 lib. cifs.ko can send session setup requests on reused connection. If reused connection is used for binding session, conn->binding can still remain true and generatepreauthhash() will not set sess->PreauthHashValue and it will be NULL. It is used as a material to create an encryption key in ksmbdgensmb311encryptionkey. ->PreauthHashValue cause null pointer dereference error from cryptoshashupdate(). BUG: kernel NULL pointer dereference, address: 0000000000000000 #PF: supervisor read access in kernel mode #PF: errorcode(0x0000) - not-present page PGD 0 P4D 0 Oops: 0000 [#1] PREEMPT SMP PTI CPU: 8 PID: 429254 Comm: kworker/8:39 Hardware name: LENOVO 20MAS08500/20MAS08500, BIOS N2CET69W (1.52 ) Workqueue: ksmbd-io handleksmbdwork [ksmbd] RIP: 0010:libsha256basedoupdate.isra.0+0x11e/0x1d0 [sha256ssse3] <TASK> ? showregs+0x6d/0x80 ? _die+0x24/0x80 ? pagefaultoops+0x99/0x1b0 ? douseraddrfault+0x2ee/0x6b0 ? excpagefault+0x83/0x1b0 ? asmexcpagefault+0x27/0x30 ? _pfxsha256transformrorx+0x10/0x10 [sha256ssse3] ? libsha256basedoupdate.isra.0+0x11e/0x1d0 [sha256ssse3] ? _pfxsha256transformrorx+0x10/0x10 [sha256ssse3] ? _pfxsha256transformrorx+0x10/0x10 [sha256ssse3] _sha256update+0x77/0xa0 [sha256ssse3] sha256avx2update+0x15/0x30 [sha256ssse3] cryptoshashupdate+0x1e/0x40 hmacupdate+0x12/0x20 cryptoshashupdate+0x1e/0x40 generatekey+0x234/0x380 [ksmbd] generatesmb3encryptionkey+0x40/0x1c0 [ksmbd] ksmbdgensmb311encryptionkey+0x72/0xa0 [ksmbd] ntlmauthenticate.isra.0+0x423/0x5d0 [ksmbd] smb2sesssetup+0x952/0xaa0 [ksmbd] _processrequest+0xa3/0x1d0 [ksmbd] _handleksmbdwork+0x1c4/0x2f0 [ksmbd] handleksmbdwork+0x2d/0xa0 [ksmbd] processonework+0x16c/0x350 workerthread+0x306/0x440 ? _pfxworkerthread+0x10/0x10 kthread+0xef/0x120 ? _pfxkthread+0x10/0x10 retfromfork+0x44/0x70 ? _pfxkthread+0x10/0x10 retfromfork_asm+0x1b/0x30 </TASK>
{ "availability": "No subscription required", "ubuntu_priority": "medium", "binaries": [ { "dasd-modules-5.4.0-9-generic-di": "5.4.0-9.12", "linux-modules-5.4.0-9-snapdragon": "5.4.0-9.12", "linux-image-unsigned-5.4.0-9-snapdragon": "5.4.0-9.12", "kernel-image-5.4.0-9-generic-di": "5.4.0-9.12", "parport-modules-5.4.0-9-generic-di": "5.4.0-9.12", "linux-headers-5.4.0-9-generic-lpae": "5.4.0-9.12", "md-modules-5.4.0-9-generic-lpae-di": "5.4.0-9.12", "linux-image-unsigned-5.4.0-9-lowlatency-dbgsym": "5.4.0-9.12", "storage-core-modules-5.4.0-9-generic-di": "5.4.0-9.12", "linux-headers-5.4.0-9": "5.4.0-9.12", "ppp-modules-5.4.0-9-generic-di": "5.4.0-9.12", "plip-modules-5.4.0-9-generic-lpae-di": "5.4.0-9.12", "block-modules-5.4.0-9-generic-di": "5.4.0-9.12", "usb-modules-5.4.0-9-generic-lpae-di": "5.4.0-9.12", "vlan-modules-5.4.0-9-generic-di": "5.4.0-9.12", "linux-udebs-generic": "5.4.0-9.12", "plip-modules-5.4.0-9-generic-di": "5.4.0-9.12", "nic-usb-modules-5.4.0-9-generic-di": "5.4.0-9.12", "linux-modules-5.4.0-9-lowlatency": "5.4.0-9.12", "input-modules-5.4.0-9-generic-lpae-di": "5.4.0-9.12", "fs-core-modules-5.4.0-9-generic-lpae-di": "5.4.0-9.12", "ipmi-modules-5.4.0-9-generic-lpae-di": "5.4.0-9.12", "storage-core-modules-5.4.0-9-generic-lpae-di": "5.4.0-9.12", "linux-modules-extra-5.4.0-9-generic": "5.4.0-9.12", "block-modules-5.4.0-9-generic-lpae-di": "5.4.0-9.12", "linux-image-unsigned-5.4.0-9-generic-dbgsym": "5.4.0-9.12", "floppy-modules-5.4.0-9-generic-di": "5.4.0-9.12", "nic-shared-modules-5.4.0-9-generic-lpae-di": "5.4.0-9.12", "crypto-modules-5.4.0-9-generic-lpae-di": "5.4.0-9.12", "kernel-image-5.4.0-9-generic-lpae-di": "5.4.0-9.12", "nic-pcmcia-modules-5.4.0-9-generic-di": "5.4.0-9.12", "virtio-modules-5.4.0-9-generic-di": "5.4.0-9.12", "linux-image-5.4.0-9-generic-dbgsym": "5.4.0-9.12", "ipmi-modules-5.4.0-9-generic-di": "5.4.0-9.12", "pcmcia-storage-modules-5.4.0-9-generic-di": "5.4.0-9.12", "linux-modules-5.4.0-9-generic": "5.4.0-9.12", "fb-modules-5.4.0-9-generic-di": "5.4.0-9.12", "nfs-modules-5.4.0-9-generic-lpae-di": "5.4.0-9.12", "linux-buildinfo-5.4.0-9-generic": "5.4.0-9.12", "linux-image-unsigned-5.4.0-9-snapdragon-dbgsym": "5.4.0-9.12", "ppp-modules-5.4.0-9-generic-lpae-di": "5.4.0-9.12", "linux-tools-5.4.0-9-generic": "5.4.0-9.12", "input-modules-5.4.0-9-generic-di": "5.4.0-9.12", "nic-shared-modules-5.4.0-9-generic-di": "5.4.0-9.12", "linux-image-5.4.0-9-generic-lpae-dbgsym": "5.4.0-9.12", "nfs-modules-5.4.0-9-generic-di": "5.4.0-9.12", "linux-headers-5.4.0-9-generic": "5.4.0-9.12", "linux-image-unsigned-5.4.0-9-lowlatency": "5.4.0-9.12", "linux-tools-5.4.0-9": "5.4.0-9.12", "crypto-modules-5.4.0-9-generic-di": "5.4.0-9.12", "linux-headers-5.4.0-9-snapdragon": "5.4.0-9.12", "linux-buildinfo-5.4.0-9-lowlatency": "5.4.0-9.12", "linux-cloud-tools-common": "5.4.0-9.12", "md-modules-5.4.0-9-generic-di": "5.4.0-9.12", "serial-modules-5.4.0-9-generic-di": "5.4.0-9.12", "vlan-modules-5.4.0-9-generic-lpae-di": "5.4.0-9.12", "linux-libc-dev": "5.4.0-9.12", "linux-source-5.4.0": "5.4.0-9.12", "linux-tools-5.4.0-9-lowlatency": "5.4.0-9.12", "nic-modules-5.4.0-9-generic-di": "5.4.0-9.12", "linux-doc": "5.4.0-9.12", "nic-modules-5.4.0-9-generic-lpae-di": "5.4.0-9.12", "parport-modules-5.4.0-9-generic-lpae-di": "5.4.0-9.12", "fat-modules-5.4.0-9-generic-di": "5.4.0-9.12", "fs-secondary-modules-5.4.0-9-generic-di": "5.4.0-9.12", "message-modules-5.4.0-9-generic-di": "5.4.0-9.12", "linux-buildinfo-5.4.0-9-generic-lpae": "5.4.0-9.12", "linux-image-unsigned-5.4.0-9-generic": "5.4.0-9.12", "multipath-modules-5.4.0-9-generic-lpae-di": "5.4.0-9.12", "sata-modules-5.4.0-9-generic-lpae-di": "5.4.0-9.12", "pata-modules-5.4.0-9-generic-di": "5.4.0-9.12", "linux-image-5.4.0-9-generic": "5.4.0-9.12", "linux-tools-5.4.0-9-generic-lpae": "5.4.0-9.12", "linux-cloud-tools-5.4.0-9": "5.4.0-9.12", "mouse-modules-5.4.0-9-generic-di": "5.4.0-9.12", "linux-tools-5.4.0-9-snapdragon": "5.4.0-9.12", "linux-headers-5.4.0-9-lowlatency": "5.4.0-9.12", "dasd-extra-modules-5.4.0-9-generic-di": "5.4.0-9.12", "linux-modules-5.4.0-9-generic-lpae": "5.4.0-9.12", "linux-tools-host": "5.4.0-9.12", "linux-cloud-tools-5.4.0-9-lowlatency": "5.4.0-9.12", "linux-buildinfo-5.4.0-9-snapdragon": "5.4.0-9.12", "linux-udebs-generic-lpae": "5.4.0-9.12", "pcmcia-modules-5.4.0-9-generic-di": "5.4.0-9.12", "nic-usb-modules-5.4.0-9-generic-lpae-di": "5.4.0-9.12", "multipath-modules-5.4.0-9-generic-di": "5.4.0-9.12", "linux-cloud-tools-5.4.0-9-generic": "5.4.0-9.12", "sata-modules-5.4.0-9-generic-di": "5.4.0-9.12", "linux-image-5.4.0-9-generic-lpae": "5.4.0-9.12", "scsi-modules-5.4.0-9-generic-lpae-di": "5.4.0-9.12", "linux-tools-common": "5.4.0-9.12", "mouse-modules-5.4.0-9-generic-lpae-di": "5.4.0-9.12", "fs-secondary-modules-5.4.0-9-generic-lpae-di": "5.4.0-9.12", "scsi-modules-5.4.0-9-generic-di": "5.4.0-9.12", "usb-modules-5.4.0-9-generic-di": "5.4.0-9.12", "fs-core-modules-5.4.0-9-generic-di": "5.4.0-9.12", "firewire-core-modules-5.4.0-9-generic-di": "5.4.0-9.12", "fat-modules-5.4.0-9-generic-lpae-di": "5.4.0-9.12" } ] }
{ "availability": "No subscription required", "ubuntu_priority": "medium", "binaries": [ { "linux-aws-cloud-tools-5.4.0-1005": "5.4.0-1005.5", "linux-image-5.4.0-1005-aws-dbgsym": "5.4.0-1005.5", "linux-modules-extra-5.4.0-1005-aws": "5.4.0-1005.5", "linux-headers-5.4.0-1005-aws": "5.4.0-1005.5", "linux-modules-5.4.0-1005-aws": "5.4.0-1005.5", "linux-image-5.4.0-1005-aws": "5.4.0-1005.5", "linux-aws-tools-5.4.0-1005": "5.4.0-1005.5", "linux-tools-5.4.0-1005-aws": "5.4.0-1005.5", "linux-aws-headers-5.4.0-1005": "5.4.0-1005.5", "linux-buildinfo-5.4.0-1005-aws": "5.4.0-1005.5", "linux-cloud-tools-5.4.0-1005-aws": "5.4.0-1005.5" } ] }
{ "availability": "No subscription required", "ubuntu_priority": "medium", "binaries": [ { "linux-azure-headers-5.4.0-1006": "5.4.0-1006.6", "linux-image-unsigned-5.4.0-1006-azure-dbgsym": "5.4.0-1006.6", "linux-cloud-tools-5.4.0-1006-azure": "5.4.0-1006.6", "linux-buildinfo-5.4.0-1006-azure": "5.4.0-1006.6", "linux-headers-5.4.0-1006-azure": "5.4.0-1006.6", "linux-azure-cloud-tools-5.4.0-1006": "5.4.0-1006.6", "linux-modules-extra-5.4.0-1006-azure": "5.4.0-1006.6", "linux-image-unsigned-5.4.0-1006-azure": "5.4.0-1006.6", "linux-azure-tools-5.4.0-1006": "5.4.0-1006.6", "linux-tools-5.4.0-1006-azure": "5.4.0-1006.6", "linux-modules-5.4.0-1006-azure": "5.4.0-1006.6" } ] }
{ "availability": "No subscription required", "ubuntu_priority": "medium", "binaries": [ { "linux-modules-5.4.0-1007-bluefield": "5.4.0-1007.10", "linux-bluefield-tools-5.4.0-1007": "5.4.0-1007.10", "linux-buildinfo-5.4.0-1007-bluefield": "5.4.0-1007.10", "linux-headers-5.4.0-1007-bluefield": "5.4.0-1007.10", "linux-bluefield-headers-5.4.0-1007": "5.4.0-1007.10", "linux-image-unsigned-5.4.0-1007-bluefield": "5.4.0-1007.10", "linux-tools-5.4.0-1007-bluefield": "5.4.0-1007.10" } ] }
{ "availability": "No subscription required", "ubuntu_priority": "medium", "binaries": [ { "linux-buildinfo-5.4.0-1005-gcp": "5.4.0-1005.5", "linux-image-unsigned-5.4.0-1005-gcp": "5.4.0-1005.5", "linux-modules-5.4.0-1005-gcp": "5.4.0-1005.5", "linux-tools-5.4.0-1005-gcp": "5.4.0-1005.5", "linux-modules-extra-5.4.0-1005-gcp": "5.4.0-1005.5", "linux-gcp-headers-5.4.0-1005": "5.4.0-1005.5", "linux-image-unsigned-5.4.0-1005-gcp-dbgsym": "5.4.0-1005.5", "linux-gcp-tools-5.4.0-1005": "5.4.0-1005.5", "linux-headers-5.4.0-1005-gcp": "5.4.0-1005.5" } ] }
{ "availability": "No subscription required", "ubuntu_priority": "medium", "binaries": [ { "linux-gkeop-tools-5.4.0-1008": "5.4.0-1008.9", "linux-cloud-tools-5.4.0-1008-gkeop": "5.4.0-1008.9", "linux-gkeop-source-5.4.0": "5.4.0-1008.9", "linux-headers-5.4.0-1008-gkeop": "5.4.0-1008.9", "linux-image-unsigned-5.4.0-1008-gkeop-dbgsym": "5.4.0-1008.9", "linux-modules-extra-5.4.0-1008-gkeop": "5.4.0-1008.9", "linux-image-unsigned-5.4.0-1008-gkeop": "5.4.0-1008.9", "linux-gkeop-headers-5.4.0-1008": "5.4.0-1008.9", "linux-gkeop-cloud-tools-5.4.0-1008": "5.4.0-1008.9", "linux-modules-5.4.0-1008-gkeop": "5.4.0-1008.9", "linux-tools-5.4.0-1008-gkeop": "5.4.0-1008.9", "linux-buildinfo-5.4.0-1008-gkeop": "5.4.0-1008.9" } ] }
{ "availability": "No subscription required", "ubuntu_priority": "medium", "binaries": [ { "linux-ibm-cloud-tools-common": "5.4.0-1003.4", "linux-ibm-tools-common": "5.4.0-1003.4", "linux-ibm-headers-5.4.0-1003": "5.4.0-1003.4", "linux-ibm-tools-5.4.0-1003": "5.4.0-1003.4", "linux-image-unsigned-5.4.0-1003-ibm": "5.4.0-1003.4", "linux-tools-5.4.0-1003-ibm": "5.4.0-1003.4", "linux-modules-5.4.0-1003-ibm": "5.4.0-1003.4", "linux-headers-5.4.0-1003-ibm": "5.4.0-1003.4", "linux-ibm-source-5.4.0": "5.4.0-1003.4", "linux-image-unsigned-5.4.0-1003-ibm-dbgsym": "5.4.0-1003.4", "linux-modules-extra-5.4.0-1003-ibm": "5.4.0-1003.4", "linux-buildinfo-5.4.0-1003-ibm": "5.4.0-1003.4" } ] }
{ "availability": "No subscription required", "ubuntu_priority": "medium", "binaries": [ { "linux-modules-5.4.0-1001-iot": "5.4.0-1001.3", "linux-iot-tools-5.4.0-1001": "5.4.0-1001.3", "linux-iot-headers-5.4.0-1001": "5.4.0-1001.3", "linux-iot-tools-common": "5.4.0-1001.3", "linux-tools-5.4.0-1001-iot": "5.4.0-1001.3", "linux-buildinfo-5.4.0-1001-iot": "5.4.0-1001.3", "linux-image-unsigned-5.4.0-1001-iot": "5.4.0-1001.3", "linux-headers-5.4.0-1001-iot": "5.4.0-1001.3", "linux-image-unsigned-5.4.0-1001-iot-dbgsym": "5.4.0-1001.3" } ] }
{ "availability": "No subscription required", "ubuntu_priority": "medium", "binaries": [ { "linux-image-5.4.0-1004-kvm": "5.4.0-1004.4", "linux-buildinfo-5.4.0-1004-kvm": "5.4.0-1004.4", "linux-headers-5.4.0-1004-kvm": "5.4.0-1004.4", "linux-image-5.4.0-1004-kvm-dbgsym": "5.4.0-1004.4", "linux-kvm-tools-5.4.0-1004": "5.4.0-1004.4", "linux-kvm-headers-5.4.0-1004": "5.4.0-1004.4", "linux-tools-5.4.0-1004-kvm": "5.4.0-1004.4", "linux-modules-5.4.0-1004-kvm": "5.4.0-1004.4" } ] }
{ "availability": "No subscription required", "ubuntu_priority": "medium", "binaries": [ { "linux-buildinfo-5.4.0-1005-oracle": "5.4.0-1005.5", "linux-headers-5.4.0-1005-oracle": "5.4.0-1005.5", "linux-image-unsigned-5.4.0-1005-oracle-dbgsym": "5.4.0-1005.5", "linux-oracle-tools-5.4.0-1005": "5.4.0-1005.5", "linux-modules-extra-5.4.0-1005-oracle": "5.4.0-1005.5", "linux-oracle-headers-5.4.0-1005": "5.4.0-1005.5", "linux-modules-5.4.0-1005-oracle": "5.4.0-1005.5", "linux-tools-5.4.0-1005-oracle": "5.4.0-1005.5", "linux-image-unsigned-5.4.0-1005-oracle": "5.4.0-1005.5" } ] }
{ "availability": "No subscription required", "ubuntu_priority": "medium", "binaries": [ { "linux-buildinfo-5.4.0-1007-raspi": "5.4.0-1007.7", "linux-headers-5.4.0-1007-raspi": "5.4.0-1007.7", "linux-raspi-headers-5.4.0-1007": "5.4.0-1007.7", "linux-tools-5.4.0-1007-raspi": "5.4.0-1007.7", "linux-image-5.4.0-1007-raspi": "5.4.0-1007.7", "linux-modules-5.4.0-1007-raspi": "5.4.0-1007.7", "linux-image-5.4.0-1007-raspi-dbgsym": "5.4.0-1007.7", "linux-raspi-tools-5.4.0-1007": "5.4.0-1007.7" } ] }
{ "availability": "No subscription required", "ubuntu_priority": "medium", "binaries": [ { "linux-modules-5.4.0-1020-xilinx-zynqmp": "5.4.0-1020.24", "linux-image-5.4.0-1020-xilinx-zynqmp": "5.4.0-1020.24", "linux-xilinx-zynqmp-headers-5.4.0-1020": "5.4.0-1020.24", "linux-xilinx-zynqmp-tools-5.4.0-1020": "5.4.0-1020.24", "linux-image-5.4.0-1020-xilinx-zynqmp-dbgsym": "5.4.0-1020.24", "linux-tools-5.4.0-1020-xilinx-zynqmp": "5.4.0-1020.24", "linux-buildinfo-5.4.0-1020-xilinx-zynqmp": "5.4.0-1020.24", "linux-headers-5.4.0-1020-xilinx-zynqmp": "5.4.0-1020.24" } ] }