🔐 CVE Alert

CVE-2026-23230

HIGH 8.8

smb: client: split cached_fid bitfields to avoid shared-byte RMW races

CVSS Score
8.8
EPSS Score
0.0%
EPSS Percentile
0th

In the Linux kernel, the following vulnerability has been resolved: smb: client: split cached_fid bitfields to avoid shared-byte RMW races is_open, has_lease and on_list are stored in the same bitfield byte in struct cached_fid but are updated in different code paths that may run concurrently. Bitfield assignments generate byte read–modify–write operations (e.g. `orb $mask, addr` on x86_64), so updating one flag can restore stale values of the others. A possible interleaving is: CPU1: load old byte (has_lease=1, on_list=1) CPU2: clear both flags (store 0) CPU1: RMW store (old | IS_OPEN) -> reintroduces cleared bits To avoid this class of races, convert these flags to separate bool fields.

Vendor linux
Product linux
Ecosystems
Industries
Technology
Published Feb 18, 2026
Last Updated Apr 13, 2026
Stay Ahead of the Next One

Get instant alerts for linux linux

Be the first to know when new high vulnerabilities affecting linux linux are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

CVSS v3 Breakdown

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability

Affected Versions

Linux / Linux
ebe98f1447bbccf8228335c62d86af02a0ed23f7 < 569fecc56bfe4df66f05734d67daef887746656b ebe98f1447bbccf8228335c62d86af02a0ed23f7 < 4386f6af8aaedd0c5ad6f659b40cadcc8f423828 ebe98f1447bbccf8228335c62d86af02a0ed23f7 < 3eaa22d688311c708b73f3c68bc6d0c8e3f0f77a ebe98f1447bbccf8228335c62d86af02a0ed23f7 < c4b9edd55987384a1f201d3d07ff71e448d79c1b ebe98f1447bbccf8228335c62d86af02a0ed23f7 < 4cfa4c37dcbcfd70866e856200ed8a2894cac578 ebe98f1447bbccf8228335c62d86af02a0ed23f7 < ec306600d5ba7148c9dbf8f5a8f1f5c1a044a241
Linux / Linux
6.1

References

NVD ↗ CVE.org ↗ EPSS Data ↗
git.kernel.org: https://git.kernel.org/stable/c/569fecc56bfe4df66f05734d67daef887746656b git.kernel.org: https://git.kernel.org/stable/c/4386f6af8aaedd0c5ad6f659b40cadcc8f423828 git.kernel.org: https://git.kernel.org/stable/c/3eaa22d688311c708b73f3c68bc6d0c8e3f0f77a git.kernel.org: https://git.kernel.org/stable/c/c4b9edd55987384a1f201d3d07ff71e448d79c1b git.kernel.org: https://git.kernel.org/stable/c/4cfa4c37dcbcfd70866e856200ed8a2894cac578 git.kernel.org: https://git.kernel.org/stable/c/ec306600d5ba7148c9dbf8f5a8f1f5c1a044a241