PT-2026-45478 · Linux · Linux
Heyitsas
·
Published
2026-06-01
·
Updated
2026-06-01
·
CVE-2026-46243
CVSS v3.1
7.8
High
| Vector | AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
In the Linux kernel, the following vulnerability has been resolved:
smb: client: reject userspace cifs.spnego descriptions
cifs.spnego key descriptions contain authority-bearing fields such as
pid, uid, creduid, and upcall target that cifs.upcall treats as
kernel-originating inputs. However, userspace can also create keys of
this type through request key(2) or add key(2), allowing those fields to
be supplied without CIFS origin.
Only accept cifs.spnego descriptions while CIFS is using its private
spnego cred to request the key.
Exploit
Fix
RCE
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Linux