4 matches found
ROOT-OS-UBUNTU-2404-CVE-2026-23428 CVE-2026-23428 in rootio-linux - Patched by Root
Root has patched CVE-2026-23428 in the rootio-linux package for Root:Ubuntu:24.04. Multiple fixed versions available...
ROOT-OS-DEBIAN-12-CVE-2026-23428 CVE-2026-23428 in rootio-linux - Patched by Root
Root has patched CVE-2026-23428 in the rootio-linux package for Root:Debian:12. Multiple fixed versions available...
CVE-2026-23428
creationtimestamp| type| source ---|---|--- 2026-04-23 23:26:48+00:00| published-proof-of-concept| Telegram/pgLuI-koqwnCr7SMtAann9VPLed2GvgsM5ymFLWKqIPrSQ 2026-05-05 20:00:00+00:00| seen| https://www.hkcert.org/security-bulletin/debian-linux-kernel-multiple-vulnerabilities20260506 2026-07-02...
CVE-2026-23428
In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix use-after-free of shareconf in compound request smb2getksmbdtcon reuses work-tcon in compound requests without validating tcon-tstate. ksmbdtreeconnlookup checks tstate == TREECONNECTED on the initial lookup path, but...