CVE-2026-23282
N/A
N/A
Summary
In the Linux kernel, the following vulnerability has been resolved:
smb: client: fix oops due to uninitialised var in smb2_unlink()
If SMB2_open_init() or SMB2_close_init() fails (e.g. reconnect), the iovs set @rqst will be left uninitialised, hence calling SMB2_open_free(), SMB2_close_free() or smb2_set_related() on them will oops.
Fix this by initialising @close_iov and @open_iov before setting them in @rqst.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Linux | Linux | 1cf9f2a6a544288516a7b9e883a48eba6246bcf2 < 86163b98891aa9800f6103252e5acc7bb98afb91 | affected |
| Linux | Linux | 1cf9f2a6a544288516a7b9e883a48eba6246bcf2 < dc710c87af3341554d02d634ada1d2036c49a94a | affected |
| Linux | Linux | 1cf9f2a6a544288516a7b9e883a48eba6246bcf2 < 048efe129a297256d3c2088cf8d79515ff5ec864 | affected |
| Linux | Linux | 6.17 | affected |
| Linux | Linux | 0 < 6.17 | unaffected |
| Linux | Linux | 6.18.17 <= 6.18.* | unaffected |
| Linux | Linux | 6.19.7 <= 6.19.* | unaffected |
| Linux | Linux | 7.0 <= * | unaffected |
Weaknesses
References
- https://git.kernel.org/stable/c/86163b98891aa9800f6103252e5acc7bb98afb91
- https://git.kernel.org/stable/c/dc710c87af3341554d02d634ada1d2036c49a94a
- https://git.kernel.org/stable/c/048efe129a297256d3c2088cf8d79515ff5ec864
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.