CVE-2026-23228

MEDIUM EPSS 2.0%
Published Feb 18, 20264mo ago · Modified Jun 17, 20262w ago
5.5 CVSS 3.1
Medium
Find Similar
Published Feb 18, 2026 4mo ago
Last Modified Jun 17, 2026 2w ago

Description

In the Linux kernel, the following vulnerability has been resolved: smb: server: fix leak of active_num_conn in ksmbd_tcp_new_connection() On kthread_run() failure in ksmbd_tcp_new_connection(), the transport is freed via free_transport(), which does not decrement active_num_conn, leaking this counter. Replace free_transport() with ksmbd_tcp_disconnect().

CVSS Details

Base Score
5.5
Exploitability
1.8
Impact
3.6
Vector string
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Attack Vector Local
Attack Complexity Low
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality None
Integrity None
Availability High

Threat Intelligence

EPSS Exploit Probability
2.0% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Weaknesses 1

CWE-401

Affected Products 10

VendorProductVersionRange
linuxlinux_kernel*≥5.15.91  –  <5.15.201
linuxlinux_kernel*≥6.1.9  –  <6.1.164
linuxlinux_kernel*≥6.2.1  –  <6.6.125
linuxlinux_kernel*≥6.7  –  <6.12.72
linuxlinux_kernel*≥6.13  –  <6.18.11
linuxlinux_kernel*≥6.19  –  <6.19.1
linuxlinux_kernel6.2any
linuxlinux_kernel6.2any
linuxlinux_kernel6.2any
linuxlinux_kernel6.2any

References 8

  • cert-portal.siemens.com https://cert-portal.siemens.com/productcert/html/ssa-253495.html
  • git.kernel.org https://git.kernel.org/stable/c/599271110c35f6b16e2e4e45b9fbd47ed378c982
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/6dd2645cf080a75be31fa66063c7332b291f46f0
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/77ffbcac4e569566d0092d5f22627dfc0896b553
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/787769c8cc50416af7b8b1a36e6bcd6aaa7680aa
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/7ddd69cd1338c6197e1b6b19cec60d99c8633e4f
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/baf664fc90a6139a39a58333e4aaa390c10d45dc
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/cd25e0d809531a67e9dd53b19012d27d2b13425f
    Patch

Remediation

  • git.kernel.org https://git.kernel.org/stable/c/599271110c35f6b16e2e4e45b9fbd47ed378c982
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/6dd2645cf080a75be31fa66063c7332b291f46f0
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/77ffbcac4e569566d0092d5f22627dfc0896b553
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/787769c8cc50416af7b8b1a36e6bcd6aaa7680aa
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/7ddd69cd1338c6197e1b6b19cec60d99c8633e4f
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/baf664fc90a6139a39a58333e4aaa390c10d45dc
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/cd25e0d809531a67e9dd53b19012d27d2b13425f
    Patch