Infinite Loop Vulnerability in Linux Kernel ksmbd Component
CVE-2026-23220

Currently unrated

Key Information:

Vendor

Linux
Status
Linux
Vendor
CVE Published:
18 February 2026

What is CVE-2026-23220?

A vulnerability in the Linux kernel’s ksmbd component can cause an infinite loop due to improper handling of signed SMB2 request failures. When the smb2 signature verification fails, it incorrectly resets critical pointers, leading to continued processing of the same request, resulting in excessive log flooding and heightened CPU utilization. A patch has been released to correct this behavior, ensuring the processing loop terminates as expected rather than progressing from an invalidated command offset.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

Linux 943cebf9ea3415ddefcd670d24d8883e97ba3d60

Linux be0f89d4419dc5413a1cf06db3671c9949be0d52 < 5accdc5b7f28a81bbc5880ac0b8886e60c86e8c8

Linux be0f89d4419dc5413a1cf06db3671c9949be0d52

References

https://git.kernel.org/stable/c/fb3b66bd72deb5543addaefa6...
https://git.kernel.org/stable/c/5accdc5b7f28a81bbc5880ac0...
https://git.kernel.org/stable/c/f7b1c2f5642bbd60b1beef1f3...

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.