HIGHCVE-2026-43215Published Modified CNA Linux
CVE-2026-43215: cifs: Fix locking usage for tcon fields
In the Linux kernel, the following vulnerability has been resolved: cifs: Fix locking usage for tcon fields We used to use the cifs_tcp_ses_lock to protect a lot of objects that are not just the server, ses or tcon lists. We later introduced srv_lock, ses_lock and tc_lock to protect fields within the corresponding structs. This was done to provide a more granular protection and avoid unnecessary serialization. There were still a couple of uses of cifs_tcp_ses_lock to provide tcon fields. In this patch, I've replaced them with tc_lock.
Metrics
- CVSS v3.1
- 8.8
- Severity
- HIGH
- Fixed in
- 0
- Affected Products
- 2
Fix available
03969db6b22e3d90d8c5f22ac1a7fe0350a94c1366.6.1286.12.756.18.166.19.6601dd3b79769b38d30b693c40afdb2a4b7edf9d07.08c59eeeeffa1524ef57e173a89a1a3ff539888d5953953abb66e52c224057ab91e404284fefeab6296c4af418586ee9a6aab61738644366426e05316
Affected packages
- Linux / Linux< 953953abb66e52c224057ab91e404284fefeab62 (from d7d7a66aacd6fd8ca57baf08a7bac5421282f6f8) · < 601dd3b79769b38d30b693c40afdb2a4b7edf9d0 (from d7d7a66aacd6fd8ca57baf08a7bac5421282f6f8) · < 3969db6b22e3d90d8c5f22ac1a7fe0350a94c136 (from d7d7a66aacd6fd8ca57baf08a7bac5421282f6f8) · < 8c59eeeeffa1524ef57e173a89a1a3ff539888d5 (from d7d7a66aacd6fd8ca57baf08a7bac5421282f6f8) · < 96c4af418586ee9a6aab61738644366426e05316 (from d7d7a66aacd6fd8ca57baf08a7bac5421282f6f8)
- Linux / Linux6.0Fixed in 0, 6.6.128, 6.12.75, 6.18.16, 6.19.6, 7.0
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H