logo_clicknbuy.png

CVE-2023-32246 – Linux Kernel – Ksmbd RCU Callback Racy Unload Vulnerability

The following table lists the changes that have been made to the
CVE-2023-32246 vulnerability over time.

Vulnerability history details can be useful for understanding the evolution
of a vulnerability, and for identifying the most recent changes that may
impact the vulnerability’s severity, exploitability, or other characteristics.

  • New CVE Received
    by 416baaa9-dc9f-4396-8d5f-8c081fb06d67

    Aug. 16, 2025

    Action Type Old Value New Value
    Added Description In the Linux kernel, the following vulnerability has been resolved:

    ksmbd: call rcu_barrier() in ksmbd_server_exit()

    racy issue is triggered the bug by racing between closing a connection
    and rmmod. In ksmbd, rcu_barrier() is not called at module unload time,
    so nothing prevents ksmbd from getting unloaded while it still has RCU
    callbacks pending. It leads to trigger unintended execution of kernel
    code locally and use to defeat protections such as Kernel Lockdown
    Added Reference https://git.kernel.org/stable/c/5a7090ccc242ab009ee7769e9d7fad6644dbe9bd
    Added Reference https://git.kernel.org/stable/c/b80422474ffe44cb5e813cd6da1f1c6bc50fd9d2
    Added Reference https://git.kernel.org/stable/c/c053e389db0d892e2ff5a60ec5e533b976503795
    Added Reference https://git.kernel.org/stable/c/d4174505016a3b2996eb7ff1530dcabbf15d47b6
    Added Reference https://git.kernel.org/stable/c/eb307d09fe15844fdaebeb8cc8c9b9e925430aa5
Share the Post:

Related Posts