Linux Kernel ksmbd Denial-of-Service Vulnerability via Repeated Connections from the Same IP

A denial-of-service vulnerability has been identified in the Linux kernel's ksmbd component. This issue arises when multiple connections from the same IP address are allowed to persist, potentially exhausting the maximum connection limit and disrupting normal client connections. The vulnerability affects several versions of the Linux kernel.

Impact

The vulnerability can lead to a denial-of-service condition, where normal client connections are disrupted due to the exhaustion of available connections from the same IP address.

Reproduction

The vulnerability can be reproduced by establishing multiple connections to the ksmbd server from the same IP address. This can be done using a script or tool that automates the process of opening connections, such as a network stress testing tool. Once the maximum number of allowed connections is reached, new connection attempts from other clients will be denied, causing a disruption in service.

Remediation

Users can update to the latest version of the Linux kernel where this vulnerability has been addressed. Instructions for updating the kernel can be found in the official Linux kernel documentation.