GHSA-8cfc-95hv-9rqjHighCVSS 7.8

In the Linux kernel, the following vulnerability has been resolved: smb: server: fix use-after...

Published
May 8, 2026
Last Modified
May 19, 2026

🔗 CVE IDs covered (1)

CVE-2026-43378

📋 Description

In the Linux kernel, the following vulnerability has been resolved: smb: server: fix use-after-free in smb2_open() The opinfo pointer obtained via rcu_dereference(fp->f_opinfo) is dereferenced after rcu_read_unlock(), creating a use-after-free window.

🔗 References (8)