CVE-2026-23228
EUVD-2026-767318.02.2026, 16:22
In the Linux kernel, the following vulnerability has been resolved: smb: server: fix leak of active_num_conn in ksmbd_tcp_new_connection() On kthread_run() failure in ksmbd_tcp_new_connection(), the transport is freed via free_transport(), which does not decrement active_num_conn, leaking this counter. Replace free_transport() with ksmbd_tcp_disconnect().Enginsight
Affected Products (NVD)
| Vendor | Product | Version |
|---|---|---|
| linux | linux_kernel | 5.15.91 ≤ 𝑥 < 5.15.201 |
| linux | linux_kernel | 6.1.9 ≤ 𝑥 < 6.1.164 |
| linux | linux_kernel | 6.2.1 ≤ 𝑥 < 6.6.125 |
| linux | linux_kernel | 6.7 ≤ 𝑥 < 6.12.72 |
| linux | linux_kernel | 6.13 ≤ 𝑥 < 6.18.11 |
| linux | linux_kernel | 6.19 ≤ 𝑥 < 6.19.1 |
| linux | linux_kernel | 6.2 |
| linux | linux_kernel | 6.2:rc6 |
| linux | linux_kernel | 6.2:rc7 |
| linux | linux_kernel | 6.2:rc8 |
𝑥
= Vulnerable software versions
Early Detection
Affected products identified ahead of NVD analysis through intelligence sources.
| Vendor | Product | Version | Source |
|---|---|---|---|
| Siemens | RUGGEDCOM RST2428P | 𝑥 < V4.0 | ADP |
Debian Releases
Amazon Linux Releases
Amazon Package | |||
|---|---|---|---|
| bpftool |
| ||
| bpftool-debuginfo |
| ||
| kernel |
| ||
| kernel-debuginfo |
| ||
| kernel-debuginfo-common-aarch64 |
| ||
| kernel-debuginfo-common-x86_64 |
| ||
| kernel-devel |
| ||
| kernel-headers |
| ||
| kernel-libbpf |
| ||
| kernel-libbpf-debuginfo |
| ||
| kernel-libbpf-devel |
| ||
| kernel-libbpf-static |
| ||
| kernel-livepatch-6.1.164-196.303 |
| ||
| kernel-modules-extra |
| ||
| kernel-modules-extra-common |
| ||
| kernel-tools |
| ||
| kernel-tools-debuginfo |
| ||
| kernel-tools-devel |
| ||
| perf |
| ||
| perf-debuginfo |
| ||
| python3-perf |
| ||
| python3-perf-debuginfo |
|
Common Weakness Enumeration
References