CVE-2026-43379
CriticalSummary
A vulnerability has been identified in the Linux kernel affecting the smb_lazy_parent_lease_break_close() function. The opinfo pointer is accessed after the RCU read unlock, leading to race conditions and potential use-after-free.
Risk Assessment
This vulnerability may lead to unpredictable system behavior, including crashes or unauthorized memory access, posing a threat to data integrity and security.
Recommendation
It is recommended to update the Linux kernel to the latest version where this vulnerability has been fixed to minimize the risk associated with its exploitation.
Original NVD description (English source)
In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix use-after-free in smb_lazy_parent_lease_break_close() opinfo pointer obtained via rcu_dereference(fp->f_opinfo) is being accessed after rcu_read_unlock() has been called. This creates a race condition where the memory could be freed by a concurrent writer between the unlock and the subsequent pointer dereferences (opinfo->is_lease, etc.), leading to a use-after-free.

