Linux Kernel Vulnerability in SMB Server by The Linux Foundation
CVE-2026-23228

Currently unrated

Key Information:

Vendor

Linux
Status
Linux
Vendor
CVE Published:
18 February 2026

What is CVE-2026-23228?

A vulnerability has been identified in the Linux kernel's SMB server component, specifically in the handling of active connections within the ksmbd_tcp_new_connection function. When a kthread run fails, the transport should be properly managed to avoid leaking the active_num_conn counter. Previously, the free_transport function was used, which did not correctly decrement this counter, leading to potential performance and resource management issues. The solution entails replacing free_transport with ksmbd_tcp_disconnect to ensure proper connection cleanup and resource allocation.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

Linux 4210c3555db4b38bade92331b153e583261f05f9 < 6dd2645cf080a75be31fa66063c7332b291f46f0

Linux d5d7847e57ac69fa99c18b363a34419bcdb5a281 < 7ddd69cd1338c6197e1b6b19cec60d99c8633e4f

Linux 0d0d4680db22eda1eea785c47bbf66a9b33a8b16 < 787769c8cc50416af7b8b1a36e6bcd6aaa7680aa

References

https://git.kernel.org/stable/c/6dd2645cf080a75be31fa6606...
https://git.kernel.org/stable/c/7ddd69cd1338c6197e1b6b19c...
https://git.kernel.org/stable/c/787769c8cc50416af7b8b1a36...

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.