CVE-2024-0565
Advisory lineage Upstream: 0 Downstream: 48
Modified
Published: 15 Jan 2024, 20:02
Last modified:06 Nov 2025, 19:54
Vulnerability Summary
Overall Risk (default)
medium
30/100 CVSS Score
7.4 HIGH
v3.1 (nvd)
EPSS Score
0.07% LOW
0% probability 0.00%
KEV
Not listed
Ransomware
No reports
Public exploits
None found
Dark Web
Not detected
Timeline
15 Jan 2024, 20:02
Published
Vulnerability first disclosed
06 Nov 2025, 19:54
Last Modified
Vulnerability information updated
Description
An out-of-bounds memory read flaw was found in receive_encrypted_standard in fs/smb/client/smb2ops.c in the SMB Client sub-component in the Linux Kernel. This issue occurs due to integer underflow on the memcpy length, leading to a denial of service.
CVSS Metrics
- v3.1•MEDIUM•Score: 6.8CVSS:3.1/AV:A/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H
- v3.1•HIGH•Score: 7.4CVSS:3.1/AV:A/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
EPSS Trends
Current EPSS score: 0.07%• Percentile: 22%
Techniques & Countermeasures
- CWE-191•Integer Underflow (Wrap or Wraparound)
The product subtracts one value from another, such that the result is less than the minimum allowable integer value, which produces a value that is not equal to the correct result.
Affected Systems
- linux•linux_kernel
≥ 6.1.36, < 6.7 | 6.7:rc1 | 6.7:rc2 | 6.7:rc3 | 6.7:rc4 | 6.7:rc5
- netapp•ontap_tools
na
References (13)
- https://access.redhat.com/errata/RHSA-2024:1188
- https://access.redhat.com/errata/RHSA-2024:1404
- https://access.redhat.com/errata/RHSA-2024:1532
- https://access.redhat.com/errata/RHSA-2024:1533
- https://access.redhat.com/errata/RHSA-2024:1607
- https://access.redhat.com/errata/RHSA-2024:1614
- https://access.redhat.com/errata/RHSA-2024:2093
- https://access.redhat.com/errata/RHSA-2024:2394
- https://access.redhat.com/security/cve/CVE-2024-0565
- https://bugzilla.redhat.com/show_bug.cgi?id=2258518
- https://www.spinics.net/lists/stable-commits/msg328851.html
- https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html
- https://security.netapp.com/advisory/ntap-20240223-0002/