CVE-2026-23226: How a Missing Lock in ksmbd’s Channel List Exposes Your Linux SMB3 Server
Complete Cloud Security in Minutes – Orca Security
2026-04-08 20:50:00
收藏
Overview The Orca Security Research Pod discovered a use-after-free race condition in the Linux kernel’s ksmbd SMB3 server. When two connections share a session over SMB3 multichannel, the kernel can read a freed channel struct – exposing the per-channel AES-128-CMAC signing key and causing a kernel panic. An attacker needs valid SMB credentials and network […]
The post CVE-2026-23226: How a Missing Lock in ksmbd’s Channel List Exposes Your Linux SMB3 Server appeared first on Orca Security.
目录
最新
- GenAI Risks in Cloud Environments: What Security Teams Are Actually Missing in 2026
- What Is Multi-Cloud Security?
- What Is Cloud Detection and Response (CDR)?
- Linux kernel vulnerability enables local theft of SSH host keys and /etc/shadow
- 18-Year-Old NGINX Rewrite Module Flaw Enables Unauthenticated DoS and Potential RCE
- Announcing Cloud Security Agent Skills for Orca’s MCP Server
- TanStack and 160+ npm/PyPI Packages Compromised in Supply Chain Worm Attack
- Dirty Frag: Linux Kernel Vulnerability Chain Enables Local Privilege Escalation to Root