Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
Linux Kernel: Shared Data Corruption Risk from SMB Client
UBUNTU-CVE-2026-23230
Summary
A bug in the Linux kernel's SMB client could cause data corruption when multiple processes access shared data at the same time. This could lead to incorrect file system behavior. It's been fixed in the latest kernel updates, so make sure you're running the latest version.
What to do
No fix is available yet. Check with your software vendor for updates.
Affected software
| Vendor | Product | Affected versions | Fix available |
|---|---|---|---|
| canonical | linux-hwe-edge | All versions | – |
| canonical | linux-aws-5.0 | All versions | – |
| canonical | linux-aws-5.3 | All versions | – |
| canonical | linux-azure | All versions | – |
| canonical | linux-azure-5.3 | All versions | – |
| canonical | linux-azure-edge | All versions | – |
| canonical | linux-gcp | All versions | – |
| canonical | linux-gcp-5.3 | All versions | – |
| canonical | linux-gke-4.15 | All versions | – |
| canonical | linux-gke-5.4 | All versions | – |
| canonical | linux-gkeop-5.4 | All versions | – |
| canonical | linux-hwe | All versions | – |
| canonical | linux-hwe-edge | All versions | – |
| canonical | linux-oem | All versions | – |
| canonical | linux-oracle-5.0 | All versions | – |
| canonical | linux-oracle-5.3 | All versions | – |
| canonical | linux-aws-5.11 | All versions | – |
| canonical | linux-aws-5.13 | All versions | – |
| canonical | linux-aws-5.8 | All versions | – |
| canonical | linux-azure-5.11 | All versions | – |
| canonical | linux-azure-5.13 | All versions | – |
| canonical | linux-azure-5.15 | All versions | – |
| canonical | linux-azure-5.8 | All versions | – |
| canonical | linux-azure-fde | All versions | – |
| canonical | linux-gcp-5.11 | All versions | – |
| canonical | linux-gcp-5.13 | All versions | – |
| canonical | linux-gcp-5.8 | All versions | – |
| canonical | linux-gke | All versions | – |
| canonical | linux-gke-5.15 | All versions | – |
| canonical | linux-gkeop | All versions | – |
| canonical | linux-gkeop-5.15 | All versions | – |
| canonical | linux-hwe-5.11 | All versions | – |
| canonical | linux-hwe-5.13 | All versions | – |
| canonical | linux-hwe-5.8 | All versions | – |
| canonical | linux-intel-5.13 | All versions | – |
| canonical | linux-oem-5.10 | All versions | – |
| canonical | linux-oem-5.13 | All versions | – |
| canonical | linux-oem-5.14 | All versions | – |
| canonical | linux-oem-5.6 | All versions | – |
| canonical | linux-oracle-5.11 | All versions | – |
| canonical | linux-oracle-5.13 | All versions | – |
| canonical | linux-oracle-5.8 | All versions | – |
| canonical | linux-raspi2 | All versions | – |
| canonical | linux-riscv | All versions | – |
| canonical | linux-riscv-5.11 | All versions | – |
| canonical | linux-riscv-5.8 | All versions | – |
| canonical | linux-allwinner-5.19 | All versions | – |
| canonical | linux-aws-5.19 | All versions | – |
| canonical | linux-aws-6.2 | All versions | – |
| canonical | linux-aws-6.5 | All versions | – |
| canonical | linux-aws-6.8 | All versions | – |
| canonical | linux-azure | All versions | – |
| canonical | linux-azure-5.19 | All versions | – |
| canonical | linux-azure-6.2 | All versions | – |
| canonical | linux-azure-6.5 | All versions | – |
| canonical | linux-azure-6.8 | All versions | – |
| canonical | linux-azure-fde | All versions | – |
| canonical | linux-azure-fde-5.19 | All versions | – |
| canonical | linux-azure-fde-6.2 | All versions | – |
| canonical | linux-azure-fde-6.8 | All versions | – |
| canonical | linux-gcp-5.19 | All versions | – |
| canonical | linux-gcp-6.2 | All versions | – |
| canonical | linux-gcp-6.5 | All versions | – |
| canonical | linux-gcp-6.8 | All versions | – |
| canonical | linux-hwe-5.19 | All versions | – |
| canonical | linux-hwe-6.2 | All versions | – |
| canonical | linux-hwe-6.5 | All versions | – |
| canonical | linux-hwe-6.8 | All versions | – |
| canonical | linux-ibm-6.8 | All versions | – |
| canonical | linux-intel-iot-realtime | All versions | – |
| canonical | linux-lowlatency-hwe-5.19 | All versions | – |
| canonical | linux-lowlatency-hwe-6.2 | All versions | – |
| canonical | linux-lowlatency-hwe-6.5 | All versions | – |
| canonical | linux-lowlatency-hwe-6.8 | All versions | – |
| canonical | linux-nvidia-6.2 | All versions | – |
| canonical | linux-nvidia-6.5 | All versions | – |
| canonical | linux-nvidia-6.8 | All versions | – |
| canonical | linux-oem-5.17 | All versions | – |
| canonical | linux-oem-6.0 | All versions | – |
| canonical | linux-oem-6.1 | All versions | – |
| canonical | linux-oem-6.5 | All versions | – |
| canonical | linux-oracle-6.5 | All versions | – |
| canonical | linux-oracle-6.8 | All versions | – |
| canonical | linux-realtime | All versions | – |
| canonical | linux-riscv | All versions | – |
| canonical | linux-riscv-5.19 | All versions | – |
| canonical | linux-riscv-6.5 | All versions | – |
| canonical | linux-riscv-6.8 | All versions | – |
| canonical | linux-starfive-5.19 | All versions | – |
| canonical | linux-starfive-6.2 | All versions | – |
| canonical | linux-starfive-6.5 | All versions | – |
| canonical | linux-azure-fips | All versions | – |
| canonical | linux-azure-fips | All versions | – |
| canonical | linux-realtime-6.8 | All versions | – |
| canonical | linux | All versions | – |
| canonical | linux-aws | All versions | – |
| canonical | linux-aws-6.14 | All versions | – |
| canonical | linux-aws-6.17 | All versions | – |
| canonical | linux-azure | All versions | – |
| canonical | linux-azure-6.11 | All versions | – |
| canonical | linux-azure-6.14 | All versions | – |
| canonical | linux-azure-6.17 | All versions | – |
| canonical | linux-azure-fde | All versions | – |
| canonical | linux-azure-fde-6.14 | All versions | – |
| canonical | linux-azure-fde-6.17 | All versions | – |
| canonical | linux-azure-nvidia | All versions | – |
| canonical | linux-azure-nvidia-6.14 | All versions | – |
| canonical | linux-gcp | All versions | – |
| canonical | linux-gcp-6.11 | All versions | – |
| canonical | linux-gcp-6.14 | All versions | – |
| canonical | linux-gcp-6.17 | All versions | – |
| canonical | linux-gke | All versions | – |
| canonical | linux-gkeop | All versions | – |
| canonical | linux-hwe-6.11 | All versions | – |
| canonical | linux-hwe-6.14 | All versions | – |
| canonical | linux-hwe-6.17 | All versions | – |
| canonical | linux-ibm | All versions | – |
| canonical | linux-lowlatency | All versions | – |
| canonical | linux-lowlatency-hwe-6.11 | All versions | – |
| canonical | linux-nvidia | All versions | – |
| canonical | linux-nvidia-6.11 | All versions | – |
| canonical | linux-nvidia-lowlatency | All versions | – |
| canonical | linux-nvidia-tegra | All versions | – |
| canonical | linux-oem-6.11 | All versions | – |
| canonical | linux-oem-6.14 | All versions | – |
| canonical | linux-oem-6.17 | All versions | – |
| canonical | linux-oem-6.8 | All versions | – |
| canonical | linux-oracle | All versions | – |
| canonical | linux-oracle-6.14 | All versions | – |
| canonical | linux-oracle-6.17 | All versions | – |
| canonical | linux-raspi | All versions | – |
| canonical | linux-raspi-realtime | All versions | – |
| canonical | linux-realtime | All versions | – |
| canonical | linux-riscv | All versions | – |
| canonical | linux-riscv-6.14 | All versions | – |
| canonical | linux-riscv-6.17 | All versions | – |
| canonical | linux-xilinx | All versions | – |
| canonical | linux-aws-fips | All versions | – |
| canonical | linux-azure-fips | All versions | – |
| canonical | linux-fips | All versions | – |
| canonical | linux-gcp-fips | All versions | – |
| canonical | linux-raspi-realtime | All versions | – |
| canonical | linux-realtime | All versions | – |
| canonical | linux-realtime-6.14 | All versions | – |
| canonical | linux | All versions | – |
| canonical | linux-aws | All versions | – |
| canonical | linux-azure | All versions | – |
| canonical | linux-azure-fde | All versions | – |
| canonical | linux-gcp | All versions | – |
| canonical | linux-oracle | All versions | – |
| canonical | linux-raspi | All versions | – |
| canonical | linux-realtime | All versions | – |
| canonical | linux-riscv | All versions | – |
Original title
In the Linux kernel, the following vulnerability has been resolved: smb: client: split cached_fid bitfields to avoid shared-byte RMW races is_open, has_lease and on_list are stored in the same bitf...
Original description
In the Linux kernel, the following vulnerability has been resolved: smb: client: split cached_fid bitfields to avoid shared-byte RMW races is_open, has_lease and on_list are stored in the same bitfield byte in struct cached_fid but are updated in different code paths that may run concurrently. Bitfield assignments generate byte read–modify–write operations (e.g. `orb $mask, addr` on x86_64), so updating one flag can restore stale values of the others. A possible interleaving is: CPU1: load old byte (has_lease=1, on_list=1) CPU2: clear both flags (store 0) CPU1: RMW store (old | IS_OPEN) -> reintroduces cleared bits To avoid this class of races, convert these flags to separate bool fields.
- https://ubuntu.com/security/CVE-2026-23230 Third Party Advisory
- https://www.cve.org/CVERecord?id=CVE-2026-23230 Third Party Advisory
- https://git.kernel.org/stable/c/3eaa22d688311c708b73f3c68bc6d0c8e3f0f77a Third Party Advisory
- https://git.kernel.org/stable/c/4386f6af8aaedd0c5ad6f659b40cadcc8f423828 Third Party Advisory
- https://git.kernel.org/stable/c/4cfa4c37dcbcfd70866e856200ed8a2894cac578 Third Party Advisory
- https://git.kernel.org/stable/c/c4b9edd55987384a1f201d3d07ff71e448d79c1b Third Party Advisory
Published: 18 Feb 2026 · Updated: 13 Mar 2026 · First seen: 9 Mar 2026