smb: client: fix potential UAF in smb2_is_valid_lease_break() — CVE-2024-35864

Summary

Advisory CVE-2024-35864. smb: client: fix potential UAF in smb2_is_valid_lease_break() Vendor: Microsoft. Source: MSRC. Threat: high. CVSS 7.8. See the official advisory for details.

What to do

General, cautious steps (verify details in the official source):

• Prioritize patching or mitigation immediately (treat as actively risky).
• Identify affected product versions in your inventory and verify whether you are impacted.
• Apply vendor patches/updates or recommended mitigations as soon as available.
• Read the official advisory for exact affected versions and remediation steps.

Official advisory

Read the official source

Related advisories

• An issue was discovered in uriparser through 0.9.7. ComposeQueryEngine in UriQuery.c has an integer overflow via long keys or values, with a resultant buffer overflow. CVE-2024-34402
• Azure Monitor Agent Elevation of Privilege Vulnerability CVE-2024-30060
• Bluetooth: msft: fix slab-use-after-free in msft_do_close() CVE-2024-36012
• btrfs: fix information leak in btrfs_ioctl_logical_to_ino() CVE-2024-35849
• btrfs: make sure that WRITTEN is set on all metadata blocks CVE-2024-35949
• crypto: iaa - Fix nr_cpus < nr_iaa case CVE-2024-26945
• crypto: sun8i-ce - Fix use after free in unprepare CVE-2024-27061
• Denial of service when trying to parse malformed POST requests in aiohttp CVE-2024-30251
• Drivers: hv: vmbus: Leak pages if set_memory_encrypted() fails CVE-2024-36913
• Drivers: hv: vmbus: Track decrypted status in vmbus_gpadl CVE-2024-36912
• drm/amd: check num of link levels when update pcie param CVE-2023-52812
• drm/amd/display: Skip on writeback when it's not applicable CVE-2024-36914