4 matches found
CVE-2025-40090
CVE-2025-40090 concerns ksmbd in the Linux kernel. The vulnerability stems from a recursive locking issue: ksmbd_session_rpc_method() attempts to lock sess->rpc_lock, while a caller may already hold it for a write, causing a deadlock with ksmbd_rpc_open and related paths when a client opens a ...
CVE-2026-23376
CVE-2026-23376 affects the Linux kernel nvmet-fcloop component. The vulnerability arises from not checking remoteport port_state before freeing resources in the fcloop_t2h_xmt_ls_rsp path, where lsrsp resources may be freed incorrectly if the remote port is not online. The fix updates fcloop_t2h_...
CVE-2026-43291
CVE-2026-43291 affects the Linux kernel NFC NCI subsystem. A parameter validation flaw for variable-length data packets can trigger a DoS by breaking NFC communication with NCI chips. Root cause: code compared variable-length packet data against a maximum length derived from sizeof(struct), ignor...
CVE-2026-53160
Summary: CVE-2026-53160 in the Linux kernel’s fastrpc component describes a use-after-free race in fastrpc_map_create. The vulnerability arises because fastrpc_map_lookup exposed a raw pointer after releasing fl->lock, and the caller then used kref_get_unless_zero on that unprotected pointer, ...