CVE-2026-46243
Published: Jun 1, 2026
Modified: Jun 2, 2026
Description
In the Linux kernel, the following vulnerability has been resolved: smb: client: reject userspace cifs.spnego descriptions cifs.spnego key descriptions contain authority-bearing fields such as pid, uid, creduid, and upcall_target that cifs.upcall treats as kernel-originating inputs. However, userspace can also create keys of this type through request_key(2) or add_key(2), allowing those fields to be supplied without CIFS origin. Only accept cifs.spnego descriptions while CIFS is using its private spnego_cred to request the key.
| Vendor | Product | Versions |
|---|---|---|
Linux | Linux | affected f1d662a7d5e5322e583aad6b3cfec03d8f27b435 - < 7713bd320ed4fc3d08a227cd8e41242219a16981affected f1d662a7d5e5322e583aad6b3cfec03d8f27b435 - < 9544559e59438a4b609b2fdfa0763d8360572824affected f1d662a7d5e5322e583aad6b3cfec03d8f27b435 - < cf20038657d6d4974349556a34e08fe0490bebbcaffected f1d662a7d5e5322e583aad6b3cfec03d8f27b435 - < 2035acfb17221729b1b8ac335e941868a04ca079affected f1d662a7d5e5322e583aad6b3cfec03d8f27b435 - < a3bbda6502a9398b816fa2e71c9a3f955f58013d+3 more versions |
Linux | Linux | affected 2.6.24unaffected 0 - < 2.6.24unaffected 5.10.258 - <= 5.10.*unaffected 5.15.209 - <= 5.15.*unaffected 6.1.175 - <= 6.1.*+5 more versions |
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now