CVE-2026-23228

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A memory leak exists in the SMB server component of the Linux kernel, specifically within the ksmbd tcp new connection() function. When kthread run() fails during the creation of a new connection, the active num conn counter is not decremented, leading to a leak. The issue occurs because the transport is freed using free transport(), which does not handle the counter decrement, instead of using ksmbd tcp disconnect().

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.