A vulnerability in the Linux kernel CIFS client can be triggered by specifically crafted file paths, leading to a denial-of-service condition.

This is an out-of-bounds read vulnerability occurring within the cifs_sanitize_prepath function. It is triggered when the function receives an empty string or a string containing only delimiters, which can cause the kernel to access memory outside of the intended buffer.

The primary impact of this vulnerability is a denial-of-service, as the out-of-bounds read will likely result in a kernel panic and subsequent system crash. With a CVSS score of 8.8, this poses a substantial risk to file server stability and availability for any system utilizing the CIFS/SMB client.

Immediate Action: Apply available kernel updates provided by your distribution. Note that for some distributions, a vendor-supplied patch may not yet be available; monitor vendor security trackers closely.

Proactive Monitoring: Monitor kernel logs for recurring crashes associated with CIFS mount operations or unusual file system activity.

Compensating Controls: If patching is delayed, restrict the use of untrusted or externally sourced SMB shares that may provide malicious path strings to the client.

Public Exploit Available: false

Administrators should audit their infrastructure for systems utilizing CIFS mounts. While this is primarily a denial-of-service vulnerability, the risk to system availability is high, and patching should be performed as soon as a stable update is released by the distribution vendor.