CVE-2026-53010

UNKNOWN 0.0

ksmbd: fix use-after-free in smb2_open during durable reconnect

CVSS Score

0.0

EPSS Score

0.0%

EPSS Percentile

0th

In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix use-after-free in smb2_open during durable reconnect In smb2_open, the call to ksmbd_put_durable_fd(fp) drops the reference to the durable file descriptor early during the durable reconnect process. If an error occurs subsequently (eg, ksmbd_iov_pin_rsp fails) or a scavenger accesses the file, it leads to a use-after-free when accessing fp properties (eg fp->create_time). Move the single put to the end of the function below err_out2 so fp stays valid until smb2_open returns.

Vendor	linux
Product	linux
Ecosystems	Linux Kernel
Industries	Technology
Published	Jun 24, 2026

Stay Ahead of the Next One

Get instant alerts for linux linux

Be the first to know when new unknown vulnerabilities affecting linux linux are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

Affected Versions

Linux / Linux

c8efcc786146a951091588e5fa7e3c754850cb3c < ce2e164c1c51c3f7813b80f8c926836e896bcbb3 c8efcc786146a951091588e5fa7e3c754850cb3c < 97a0cd55283b4e63fd92804da91c8d9896adcad9 c8efcc786146a951091588e5fa7e3c754850cb3c < 1baff47b81f94f9231c91236aa511420d0e266b9 8df4bcdb0a4232192b2445256c39b787d58ef14d 6.6.32 < 6.7

Linux / Linux

6.9

References

NVD ↗ CVE.org ↗ EPSS Data ↗

git.kernel.org: https://git.kernel.org/stable/c/ce2e164c1c51c3f7813b80f8c926836e896bcbb3 git.kernel.org: https://git.kernel.org/stable/c/97a0cd55283b4e63fd92804da91c8d9896adcad9 git.kernel.org: https://git.kernel.org/stable/c/1baff47b81f94f9231c91236aa511420d0e266b9