CVE-2026-43239

HIGH

smb: client: prevent races in ->query_interfaces()

Title source: cna

Description

In the Linux kernel, the following vulnerability has been resolved: smb: client: prevent races in ->query_interfaces() It was possible for two query interface works to be concurrently trying to update the interfaces. Prevent this by checking and updating iface_last_update under iface_lock.

References (5)

Core 5

Core References

https://git.kernel.org/stable/c/93e8e3ee165ae4609a1222b516b573837103d2c3

https://git.kernel.org/stable/c/ab6564f416a6eaf1199200b6100952407b438f7d

https://git.kernel.org/stable/c/6287eefaf21ec805d42f941bd368018cf397a7f5

https://git.kernel.org/stable/c/76cc4faba0343c6db945b8dc75425b33d633e1b8

https://git.kernel.org/stable/c/c3c06e42e1527716c54f3ad2ced6a034b5f3a489

Scores

CVSS v3 8.8

EPSS 0.0004

EPSS Percentile 13.3%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Details

Status published

Products (19)

Linux/Linux < 5.19

Linux/Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 - 6287eefaf21ec805d42f941bd368018cf397a7f5

Linux/Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 - 76cc4faba0343c6db945b8dc75425b33d633e1b8

Linux/Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 - 93e8e3ee165ae4609a1222b516b573837103d2c3

Linux/Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 - ab6564f416a6eaf1199200b6100952407b438f7d

Linux/Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 - c3c06e42e1527716c54f3ad2ced6a034b5f3a489

Linux/Linux 5.19

Linux/Linux 6.12.75 - 6.12.*

Linux/Linux 6.18.16 - 6.18.*

Linux/Linux 6.19.6 - 6.19.*

... and 9 more

Published May 06, 2026

Tracked Since May 06, 2026