Linux Kernel Vulnerability Affecting ksmbd Guest User Access
CVE-2023-32249

Currently unrated

Key Information:

Vendor

Linux
Status
Linux
Vendor
CVE Published:
16 August 2025

What is CVE-2023-32249?

A vulnerability has been identified in the Linux Kernel's ksmbd module which restricts guest user access during multichannel operations. The patch implements a security measure that generates a STATUS_NOT_SUPPORTED response when a session attempts to bind as a guest user, enhancing the overall security posture of the network file sharing capabilities.

Affected Version(s)

Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2

Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 1f0490586544455e5be698be2e6c30077b4ec461

Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 4a98e859c4673013385a54084e0cd865695ca072

References

https://git.kernel.org/stable/c/ed76d3a8910be06cd4e4ba63b...
https://git.kernel.org/stable/c/1f0490586544455e5be698be2...
https://git.kernel.org/stable/c/4a98e859c4673013385a54084...

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.
CVE-2023-32249 : Linux Kernel Vulnerability Affecting ksmbd Guest User Access