Red Hat response to Zero Day Initiative ksmbd vulnerabilities
- Red Hat Enterprise Linux (all versions)
- Red Hat OpenShift (all versions)
Trend Micro Zero Day Initiative (ZDI) made public several vulnerabilities affecting the
ksmbd module in the Linux kernel.
Are Red Hat products affected by these issues?
Trend Micro's Zero Day Initiative (ZDI) reported four vulnerabilities affecting the kernel's
ksmbd module, and one issue affecting the CIFS driver. They are mapped as:
|Affected kernel Component||Zero Day Initiative ID||CVE ID||CVSS Score|
|ksmbd and CIFS||ZDI-22-1689||CVE-2022-47938||6.5|
No Red Hat products are affected by the
ksmbd vulnerabilities, as the code is not included in any shipping release. Customers’ OpenShift workloads based on the UBI container base images also do not ship it and do not need to be updated or rebuilt. These flaws do not affect any of the layered products.
Red Hat Enterprise Linux takes a conservative approach to including untested code in released products. New features are only included once considered stable and tested and this new functionality has not yet met this requirement.
Only CVE-2022-47938 affects RHEL versions 8 and 9, with Moderate impact.
ksmbd is a kernel-side file server compatible with the SMB protocol included in the Linux kernel in 2021. It is designed to be a lightweight file server without the need of a downstream userspace (for example: samba) component providing such service. Trend Micro’s Zero Day found a number of issues with
ksmbd and disclosed their findings on December 22, 2022.
Again, it is paramount to notice that this kernel module is not shipped in Red Hat products.
- Look up for the
SMB_SERVERfunctionality in your kernel:
$ grep SMB_SERVER /boot/config-$(uname -r) # CONFIG_SMB_SERVER is not set
$ grep SMB_SERVER /boot/config-$(uname -r) $ <no results>
- Get information for the
$ modinfo ksmbd modinfo: ERROR: Module ksmbd not found.
- Red Hat Enterprise Linux
This solution is part of Red Hat’s fast-track publication program, providing a huge library of solutions that Red Hat engineers have created while supporting our customers. To give you the knowledge you need the instant it becomes available, these articles may be presented in a raw and unedited form.