PT-2026-20456 · Linux · Linux Kernel

Published

2026-01-01

Updated

2026-04-20

CVE-2026-23230

CVSS v3.1

8.8

High

Vector

AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A race condition exists within the SMB client implementation related to cached file identifier (cached fid) bitfields. Specifically, the is open, has lease, and on list flags were stored within the same bitfield byte in the struct cached fid. Concurrent updates to these flags from different code paths, utilizing read-modify-write operations, could lead to stale values being reintroduced. This occurs because updating one flag can inadvertently restore previously cleared bits. The issue is addressed by converting these flags into separate boolean fields.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2026-23230

ECHO-BC45-5F7E-564A

OESA-2026-1760

OPENSUSE-SU-2026:10387-1

OPENSUSE-SU-2026:20416-1

SUSE-SU-2026:20838-1

SUSE-SU-2026:20931-1

SUSE-SU-2026:21284-1

Affected Products

Linux Kernel

PT-2026-20456 · Linux · Linux Kernel

CVE-2026-23230

Related Identifiers

Affected Products

References · 546