CVE-2026-23364

Summary

In the Linux kernel, the following vulnerability has been resolved:

ksmbd: Compare MACs in constant time

To prevent timing attacks, MAC comparisons need to be constant-time. Replace the memcmp() with the correct function, crypto_memneq().

Affected Software

VendorProductVersion RangeStatus
LinuxLinuxe2f34481b24db2fd634b5edb0a5bd0e4d38cc6e9 < 8a665d733940592e671ec6afadcd0be80a091a80affected
LinuxLinuxe2f34481b24db2fd634b5edb0a5bd0e4d38cc6e9 < cd52a0e309659537048a864211abc3ea4c5caa63affected
LinuxLinuxe2f34481b24db2fd634b5edb0a5bd0e4d38cc6e9 < 307afccb751f542246bd5dc68a2c1ffe1a78418caffected
LinuxLinuxe2f34481b24db2fd634b5edb0a5bd0e4d38cc6e9 < 2cdc56ed67615ba0921383a688f24415ebe065f3affected
LinuxLinuxe2f34481b24db2fd634b5edb0a5bd0e4d38cc6e9 < 93c0a22fec914ec4b697e464895a0f594e29fb28affected
LinuxLinuxe2f34481b24db2fd634b5edb0a5bd0e4d38cc6e9 < f4588b85efd6007d46b80aa1b9fb746628ffb3dcaffected
LinuxLinuxe2f34481b24db2fd634b5edb0a5bd0e4d38cc6e9 < c5794709bc9105935dbedef8b9cf9c06f2b559faaffected
LinuxLinux5.15affected
LinuxLinux0 < 5.15unaffected
LinuxLinux5.15.210 <= 5.15.*unaffected
LinuxLinux6.1.167 <= 6.1.*unaffected
LinuxLinux6.6.130 <= 6.6.*unaffected
LinuxLinux6.12.78 <= 6.12.*unaffected
LinuxLinux6.18.19 <= 6.18.*unaffected
LinuxLinux6.19.7 <= 6.19.*unaffected
LinuxLinux7.0 <= *unaffected

Weaknesses

References