git.ipfire.org Git - thirdparty/kernel/stable.git/commit

author	Namjae Jeon <linkinjeon@kernel.org>
	Mon, 21 Jul 2025 05:28:55 +0000 (14:28 +0900)
committer	Greg Kroah-Hartman <gregkh@linuxfoundation.org>
	Fri, 15 Aug 2025 10:09:05 +0000 (12:09 +0200)
commit	d79c8bebaa622ee223128be7c66d8aaeeb634a57
tree	52eacb166e2c49a64feaf7607cf33c5c9f5ed4b6	tree
parent	44bd006d5c93f6a8f28b106cbae2428c5d0275b7	commit \| diff

ksmbd: fix null pointer dereference error in generate_encryptionkey

commit 9b493ab6f35178afd8d619800df9071992f715de upstream.

If client send two session setups with krb5 authenticate to ksmbd,
null pointer dereference error in generate_encryptionkey could happen.
sess->Preauth_HashValue is set to NULL if session is valid.
So this patch skip generate encryption key if session is valid.

Cc: stable@vger.kernel.org
Reported-by: zdi-disclosures@trendmicro.com # ZDI-CAN-27654
Signed-off-by: Namjae Jeon <linkinjeon@kernel.org>
Signed-off-by: Steve French <stfrench@microsoft.com>
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>