https://www.walknews.com/786687/ 第851回 KSMBDでSambaではないSMBサーバーを実行する | gihyo.jp #gihyo.jp #KSMBD #OS #samba #Science #Science&Technology #SMB #Technology #Ubuntu #サーバ関連 #テクノロジー #ネットワーク技術 #技術動向 #技術解説 #技術評論社 #業界動向 #科学 #科学&テクノロジー
https://www.wacoca.com/news/2426630/ 第851回 KSMBDでSambaではないSMBサーバーを実行する | gihyo.jp #gihyo.jp #KSMBD #OS #Samba #Science&Technology #ScienceNews #SMB #TechnologyNews #ubuntu #サーバ関連 #テクノロジー #ネットワーク技術 #技術動向 #技術解説 #技術評論社 #業界動向 #科学 #科学&テクノロジー
#ksmbdtools 3.5.3 has been released (#cifsdtools / #ksmbd / #cifsd / #Linux / #Kernel / #Samba / #SMB / #SMBv1 / #SMBv2 / #SMBv3 / #CIFS / #ServerMessageBlock / #CommonInternetFileSystem) https://github.com/cifsd-team/ksmbd-tools/
Let's briefly talk about #KSMBD: Why? I mean, as a vulnerability researcher, that sounds like fun. As a defender, it sounds like not fun at all.
After two years, #KSMBD now considered stable; planned for Linux kernel 6.6 https://www.linux-magazine.com/Online/News/KSMBD-Has-Finally-Reached-a-Stable-State #Linux #kernel #module #Samsung #Samba #security #performance
https://www.phoronix.com/news/KSMBD-Stable-Linux-6.6
Finally, I can enjoy all of my classic Windows SMB vulnerabilities on Linux, thanks to KSMBD. This will truly be the Year of the Linux Desktop. Nothing can possibli go wrong. /s
#linux #smb #ksmbd #yearofthelinuxdesktop #nothingcanpossibligowrong
#kSMBd: a quick overview
“At the end of 2021, an LWN article caught our attention. A new SMB server implementation was being actively developed and on top of that, it was an in-kernel Linux implementation. Thus, our spring break was booked.”
Glad most distros aren't enabling ksmbd by default! Another RCE has been discovered. Great breakdown of detection and mitigating here.
#cybersecuritynews #rce #KSMBD
https://sysdig.com/blog/cve-2023-0210-linux-kernel-unauthenticated-remote-heap-overflow/
Critical Linux Vulnerability: Jack Wallen says the flaw has been found to affect SMB servers and can lead to remote code execution https://www.fosslife.org/critical-linux-vulnerability-affects-smb-servers #Linux #vulnerability #SMB #networking #security #KSMBD #SMB3 #FileSharing
Ksmbd: Kritische Lücke im SMB-Dienst des Linux-Kernels - Golem.de
https://glm.io/170747?n #Linux #LinuxKernel #KSMBD #Sicherheitslücke
New Linux vulnerability affects SMB servers and may lead to remote code execution https://www.linux-magazine.com/Online/News/Critical-Linux-Vulnerability-Found-to-Impact-SMB-Servers #security #Linux #vulnerability #SMB #KSMBD #patch #kernel
Ksmbd: Kritische Lücke im SMB-Dienst des Linux-Kernels - Golem.de
https://www.golem.de/news/ksmbd-kritische-luecke-im-smb-dienst-des-linux-kernel-2212-170747.amp.html
"Bei der nun veröffentlichten Lücke handelt es sich um einen Use-After-Free-Fehler, der offenbar automatisiert gefunden wurde."
Klingt nach einem sehr trivialen Bug. Schade, dass das Entwicklerteam den nicht selbst gefunden hat
Critical #Linux Kernel flaw affects #SMB servers with #ksmbd enabled
https://securityaffairs.co/wordpress/140013/hacking/critical-linux-kernel-vulnerability.html
#securityaffairs #hacking
Regarding the latest KSMBD / #Linux Kernel CVSS 10.0 vulnerability:
How often are organizations using #KSMBD (SMB in the kernel?) and how many linux servers are typically using SMB in general?
https://www.zerodayinitiative.com/advisories/ZDI-22-1690/
I understand it’s an impactful bug that can lead to RCE - but I’ve not seen KSMBD enabled on any of the linux servers that I have access to.
CVSS 10.0 RCE in Linux kernel ksmbd component:
https://www.zerodayinitiative.com/advisories/ZDI-22-1690/
Appears to have been patched in 5.15.61 in August, so anyone keeping up with upstream security patches ought to be okay?
Fix in upstream commit cf6531d98190fa2cf92a6d8bbc8af0a4740a223c
No CVE appears to as yet have been assigned. (Which is somewhat upsetting given this bug was spotted and fixed 6 months ago!)
