Race Condition in Linux Kernel ksmbd Server Affects Performance and Security
CVE-2023-32246

Currently unrated

Key Information:

Vendor

Linux
Status
Linux
Vendor
CVE Published:
16 August 2025

What is CVE-2023-32246?

A race condition vulnerability exists in the Linux kernel's ksmbd server, triggered when there is a conflict between the closing of connections and the unloading of modules. The failure to call rcu_barrier() during the module's unloading process allows the ksmbd server to be unloaded while RCU callbacks are still pending. This can result in unintended execution of kernel code, undermining vital security features like Kernel Lockdown. This vulnerability emphasizes the need for robust kernel management practices to mitigate potential security risks.

Affected Version(s)

Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2

Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2

Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2

References

https://git.kernel.org/stable/c/c053e389db0d892e2ff5a60ec...
https://git.kernel.org/stable/c/b80422474ffe44cb5e813cd6d...
https://git.kernel.org/stable/c/d4174505016a3b2996eb7ff15...

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.
CVE-2023-32246 : Race Condition in Linux Kernel ksmbd Server Affects Performance and Security