Updated: 2026-02-26
CWE: CWE-416
Description:
In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix use-after-free in ksmbd_tree_connect_put under concurrency Under high concurrency, A tree-connection object (tcon) is freed on a disconnect path while another path still holds a reference and later executes *_put()/write on it.
CVSS3: 7.8
| OS | Vendor version | Errata |
|---|---|---|
| Debian 12 | 6.1.162-1 | DSA-6127-1 |
| OS | Original kernel version | State |
|---|---|---|
| Debian 12 | |
Planned |