As described at CVE-2007-5904. Linux Kernel version 2.6.23.1 and prior have a bug with cifs. A vulnerability has been identified in Linux Kernel, which could be exploited by attackers to cause a denial of service or execute arbitrary code. This issue is caused by a buffer overflow error in the "SendReceive()" [fs/cifs/transport.c] function when processing overly long SMB responses, which could be exploited by a malicious server to crash or compromise an affected system. A fix is available via GIT : http://git.kernel.org/?p=linux/kernel/git/sfrench/cifs-2.6.git;a=commit;h=133672efbc1085f9af990bdc145e1822ea93bcf3 Reproducible: Always Steps to Reproduce:
*** This bug has been marked as a duplicate of bug 198997 ***