CVE-2025-21994

*** Pendiente de traducción *** In the Linux kernel, the following vulnerability has been resolved:<br /> <br /> ksmbd: fix incorrect validation for num_aces field of smb_acl<br /> <br /> parse_dcal() validate num_aces to allocate posix_ace_state_array.<br /> <br /> if (num_aces &gt; ULONG_MAX / sizeof(struct smb_ace *))<br /> <br /> It is an incorrect validation that we can create an array of size ULONG_MAX.<br /> smb_acl has -&gt;size field to calculate actual number of aces in request buffer<br /> size. Use this to check invalid num_aces.