1.0 Introduction
Recently, Linux has released a security update on critical vulnerabilities in KSMBD, the in-kernel SMB server for Linux.
2.0 Impact
These vulnerabilities pose significant risks to system security and could potentially allow attackers to gain control of vulnerable systems.
3.0 Affected Products
- Linux kernel versions > 5.15
4.0 Recommendation
CyberSecurity Malaysia highly recommends that users of these applications upgrade to the latest version of the affected products.
Kindly refer to the following URL:
- https://github.com/google/security-research/security/advisories/GHSA-qmm2-xfcw-4r29
- https://github.com/google/security-research/security/advisories/GHSA-gqrv-6fcf-hvv8
Generally, we advise users to be updated with the latest security announcements by the vendor and follow best practice security policies to determine which updates should be applied.
For further enquiries, please contact the Cyber999 Incident Response Centre through the following channels:
E-mail: cyber999[at]cybersecurity.my
Phone: 1-300-88-2999 (monitored during business hours)
Mobile: +60 19 2665850 (24x7 call incident reporting)
Business Hours: Mon - Fri 08:30 -17:30 MYT
Web: https://www.mycert.org.my
5.0 References