Description

In the Linux kernel, the following vulnerability has been resolved: ksmbd: add chann_lock to protect ksmbd_chann_list xarray ksmbd_chann_list xarray lacks synchronization, allowing use-after-free in multi-channel sessions (between lookup_chann_list() and ksmbd_chann_del). Adds rw_semaphore chann_lock to struct ksmbd_session and protects all xa_load/xa_store/xa_erase accesses.

INFO

Published Date :

2026-02-18T14:53:29.562Z

Last Modified :

2026-04-02T14:43:47.471Z

Source :

Linux
AFFECTED PRODUCTS

The following products are affected by CVE-2026-23226 vulnerability.

Vendors Products
Linux
  • Linux Kernel
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2026-23226.

URL Resource
https://git.kernel.org/stable/c/36ef605c0395b94b826a8c8d6f2697071173de6e cve-icon cve-icon
https://git.kernel.org/stable/c/4c2ca31608521895dd742a43beca4b4d29762345 cve-icon cve-icon
https://git.kernel.org/stable/c/4f3a06cc57976cafa8c6f716646be6c79a99e485 cve-icon cve-icon
https://git.kernel.org/stable/c/e4a8a96a93d08570e0405cfd989a8a07e5b6ff33 cve-icon cve-icon
https://lore.kernel.org/linux-cve-announce/2026021807-CVE-2026-23226-438c@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2026-23226 cve-icon
https://www.cve.org/CVERecord?id=CVE-2026-23226 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact