An issue was discovered in the Linux kernel before 6.3.10. fs/smb/server/smb2misc.c in ksmbd does not validate the relationship between the command payload size and the RFC1002 length specification, leading to an out-of-bounds read.
https://security.netapp.com/advisory/ntap-20230831-0002/
https://cdn.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.3.10