I'll have to get my facts straight but I'm pretty sure that ksmbd is ... not use... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		gerdesj 4 months ago \| parent \| context \| favorite \| on: I used o3 to find a remote zeroday in the Linux SM... I'll have to get my facts straight but I'm pretty sure that ksmbd is ... not used much (by me). https://lwn.net/Articles/871866/ This is also nothing to do with Samba which is a well trodden path. So why not attack a codebase that is rather more heavily used and older? Why not go for vi?

usr1106 4 months ago [–]

Good link. After reading this it's not a surprise that this code has security vulnerabilities. But of course from knowing that there must be more to actually finding it, it's still a big leap.

4 years after the article, does any relevant distro have that implementation enabled?

Consider applying for YC's Winter 2026 batch! Applications are open till Nov 10
Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact