Linux Kernel Vulnerability in ksmbd File System Management
CVE-2026-52944

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 24 June 2026

What is CVE-2026-52944?

A vulnerability exists in the Linux Kernel's ksmbd file system management that allows unauthorized modification of a file's sparse attribute through FSCTL_SET_SPARSE. This occurs in two main scenarios: first, clients on read-only shares could alter files they accessed, which should not be permitted. Additionally, clients lacking the necessary access rights can still modify the sparse attribute on writable shares. This oversight stems from an absence of proper permission checks, which has now been addressed by implementing necessary share-level and handle-level checks, ensuring more robust security.

Affected Version(s)

Linux e2f34481b24db2fd634b5edb0a5bd0e4d38cc6e9 < 3127a884525dc8ca4def73254bfcd3ccef0bf812

Linux e2f34481b24db2fd634b5edb0a5bd0e4d38cc6e9

References

https://git.kernel.org/stable/c/3127a884525dc8ca4def73254...

https://git.kernel.org/stable/c/de9eb0b44fa9123170e6245b4...

https://git.kernel.org/stable/c/aef151bcfa494bfe983669de2...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 24, 2026
Vulnerability Reserved
Jun 9, 2026

CVE-2026-52944 Data

JSON