CVE-2026-43239

EUVD-2026-27800
In the Linux kernel, the following vulnerability has been resolved:

smb: client: prevent races in ->query_interfaces()

It was possible for two query interface works to be concurrently trying
to update the interfaces.

Prevent this by checking and updating iface_last_update under
iface_lock.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
8.8 HIGH
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Awaiting analysis
This vulnerability is currently awaiting analysis.
Base Score
CVSS 3.x
EPSS Score
Percentile: 4%
Debian logo
Debian Releases
Debian Product
Codename
linux
bookworm
vulnerable
bookworm (security)
vulnerable
bullseye
5.10.223-1
fixed
bullseye (security)
5.10.251-4
fixed
forky
6.19.14-1
fixed
sid
7.0.4-1
fixed
trixie
vulnerable
trixie (security)
6.12.86-1
fixed
Vulnerability Media Exposure
References
https://git.kernel.org/stable/c/6287eefaf21ec805d42f941bd368018cf397a7f5
https://git.kernel.org/stable/c/76cc4faba0343c6db945b8dc75425b33d633e1b8
https://git.kernel.org/stable/c/93e8e3ee165ae4609a1222b516b573837103d2c3
https://git.kernel.org/stable/c/ab6564f416a6eaf1199200b6100952407b438f7d
https://git.kernel.org/stable/c/c3c06e42e1527716c54f3ad2ced6a034b5f3a489