CVE-2023-32246
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2023-32246
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2023-32246.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2023-32246
- Downstream
- Published
- 2025-08-16T13:22:09Z
- Modified
- 2025-10-21T14:13:03.059519Z
- Summary
- ksmbd: call rcu_barrier() in ksmbd_server_exit()
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
ksmbd: call rcubarrier() in ksmbdserver_exit()
racy issue is triggered the bug by racing between closing a connection and rmmod. In ksmbd, rcu_barrier() is not called at module unload time, so nothing prevents ksmbd from getting unloaded while it still has RCU callbacks pending. It leads to trigger unintended execution of kernel code locally and use to defeat protections such as Kernel Lockdown
- References
-
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- https://git.kernel.org/stable/c/5a7090ccc242ab009ee7769e9d7fad6644dbe9bd
- https://git.kernel.org/stable/c/b80422474ffe44cb5e813cd6da1f1c6bc50fd9d2
- https://git.kernel.org/stable/c/c053e389db0d892e2ff5a60ec5e533b976503795
- https://git.kernel.org/stable/c/d4174505016a3b2996eb7ff1530dcabbf15d47b6
- https://git.kernel.org/stable/c/eb307d09fe15844fdaebeb8cc8c9b9e925430aa5
Affected packages
Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected ranges
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced0626e6641f6b467447c81dd7678a69c66f7746cfFixedc053e389db0d892e2ff5a60ec5e533b976503795
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced0626e6641f6b467447c81dd7678a69c66f7746cfFixedb80422474ffe44cb5e813cd6da1f1c6bc50fd9d2
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced0626e6641f6b467447c81dd7678a69c66f7746cfFixedd4174505016a3b2996eb7ff1530dcabbf15d47b6
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced0626e6641f6b467447c81dd7678a69c66f7746cfFixed5a7090ccc242ab009ee7769e9d7fad6644dbe9bd
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced0626e6641f6b467447c81dd7678a69c66f7746cfFixedeb307d09fe15844fdaebeb8cc8c9b9e925430aa5
Affected versions
v5.*
v5.13
v5.13-rc2
v5.13-rc3
v5.13-rc4
v5.13-rc5
v5.13-rc6
v5.13-rc7
v5.14
v5.14-rc1
v5.14-rc2
v5.14-rc3
v5.14-rc4
v5.14-rc5
v5.14-rc6
v5.14-rc7
v5.15
v5.15-rc1
v5.15-rc2
v5.15-rc3
v5.15-rc4
v5.15-rc5
v5.15-rc6
v5.15-rc7
v5.15.1
v5.15.10
v5.15.100
v5.15.101
v5.15.102
v5.15.103
v5.15.104
v5.15.105
v5.15.106
v5.15.107
v5.15.108
v5.15.109
v5.15.11
v5.15.110
v5.15.12
v5.15.13
v5.15.14
v5.15.15
v5.15.16
v5.15.17
v5.15.18
v5.15.19
v5.15.2
v5.15.20
v5.15.21
v5.15.22
v5.15.23
v5.15.24
v5.15.25
v5.15.26
v5.15.27
v5.15.28
v5.15.29
v5.15.3
v5.15.30
v5.15.31
v5.15.32
v5.15.33
v5.15.34
v5.15.35
v5.15.36
v5.15.37
v5.15.38
v5.15.39
v5.15.4
v5.15.40
v5.15.41
v5.15.42
v5.15.43
v5.15.44
v5.15.45
v5.15.46
v5.15.47
v5.15.48
v5.15.49
v5.15.5
v5.15.50
v5.15.51
v5.15.52
v5.15.53
v5.15.54
v5.15.55
v5.15.56
v5.15.57
v5.15.58
v5.15.59
v5.15.6
v5.15.60
v5.15.61
v5.15.62
v5.15.63
v5.15.64
v5.15.65
v5.15.66
v5.15.67
v5.15.68
v5.15.69
v5.15.7
v5.15.70
v5.15.71
v5.15.72
v5.15.73
v5.15.74
v5.15.75
v5.15.76
v5.15.77
v5.15.78
v5.15.79
v5.15.8
v5.15.80
v5.15.81
v5.15.82
v5.15.83
v5.15.84
v5.15.85
v5.15.86
v5.15.87
v5.15.88
v5.15.89
v5.15.9
v5.15.90
v5.15.91
v5.15.92
v5.15.93
v5.15.94
v5.15.95
v5.15.96
v5.15.97
v5.15.98
v5.15.99
v5.16
v5.16-rc1
v5.16-rc2
v5.16-rc3
v5.16-rc4
v5.16-rc5
v5.16-rc6
v5.16-rc7
v5.16-rc8
v5.17
v5.17-rc1
v5.17-rc2
v5.17-rc3
v5.17-rc4
v5.17-rc5
v5.17-rc6
v5.17-rc7
v5.17-rc8
v5.18
v5.18-rc1
v5.18-rc2
v5.18-rc3
v5.18-rc4
v5.18-rc5
v5.18-rc6
v5.18-rc7
v5.19
v5.19-rc1
v5.19-rc2
v5.19-rc3
v5.19-rc4
v5.19-rc5
v5.19-rc6
v5.19-rc7
v5.19-rc8
v6.*
v6.0
v6.0-rc1
v6.0-rc2
v6.0-rc3
v6.0-rc4
v6.0-rc5
v6.0-rc6
v6.0-rc7
v6.1
v6.1-rc1
v6.1-rc2
v6.1-rc3
v6.1-rc4
v6.1-rc5
v6.1-rc6
v6.1-rc7
v6.1-rc8
v6.1.1
v6.1.10
v6.1.11
v6.1.12
v6.1.13
v6.1.14
v6.1.15
v6.1.16
v6.1.17
v6.1.18
v6.1.19
v6.1.2
v6.1.20
v6.1.21
v6.1.22
v6.1.23
v6.1.24
v6.1.25
v6.1.26
v6.1.27
v6.1.3
v6.1.4
v6.1.5
v6.1.6
v6.1.7
v6.1.8
v6.1.9
v6.2
v6.2-rc1
v6.2-rc2
v6.2-rc3
v6.2-rc4
v6.2-rc5
v6.2-rc6
v6.2-rc7
v6.2-rc8
v6.2.1
v6.2.10
v6.2.11
v6.2.12
v6.2.13
v6.2.14
v6.2.2
v6.2.3
v6.2.4
v6.2.5
v6.2.6
v6.2.7
v6.2.8
v6.2.9
v6.3
v6.3-rc1
v6.3-rc2
v6.3-rc3
v6.3-rc4
v6.3-rc5
v6.3-rc6
v6.3-rc7
v6.3.1
Database specific
vanir_signatures
[
{
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@d4174505016a3b2996eb7ff1530dcabbf15d47b6",
"id": "CVE-2023-32246-0d855c47",
"deprecated": false,
"signature_version": "v1",
"target": {
"function": "ksmbd_server_exit",
"file": "fs/ksmbd/server.c"
},
"digest": {
"length": 65.0,
"function_hash": "264992563689453691677580935417315808849"
},
"signature_type": "Function"
},
{
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@b80422474ffe44cb5e813cd6da1f1c6bc50fd9d2",
"id": "CVE-2023-32246-1dbe5742",
"deprecated": false,
"signature_version": "v1",
"target": {
"file": "fs/ksmbd/server.c"
},
"digest": {
"threshold": 0.9,
"line_hashes": [
"281405391604816662861263624559517783562",
"102101613279850499704848958245973912659",
"213808947558278820460272894316752090839",
"5795007056839250971309084018887735387"
]
},
"signature_type": "Line"
},
{
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@5a7090ccc242ab009ee7769e9d7fad6644dbe9bd",
"id": "CVE-2023-32246-384c5df5",
"deprecated": false,
"signature_version": "v1",
"target": {
"file": "fs/ksmbd/server.c"
},
"digest": {
"threshold": 0.9,
"line_hashes": [
"281405391604816662861263624559517783562",
"102101613279850499704848958245973912659",
"213808947558278820460272894316752090839",
"5795007056839250971309084018887735387"
]
},
"signature_type": "Line"
},
{
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@eb307d09fe15844fdaebeb8cc8c9b9e925430aa5",
"id": "CVE-2023-32246-4a444ab0",
"deprecated": false,
"signature_version": "v1",
"target": {
"file": "fs/ksmbd/server.c"
},
"digest": {
"threshold": 0.9,
"line_hashes": [
"281405391604816662861263624559517783562",
"102101613279850499704848958245973912659",
"213808947558278820460272894316752090839",
"5795007056839250971309084018887735387"
]
},
"signature_type": "Line"
},
{
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@5a7090ccc242ab009ee7769e9d7fad6644dbe9bd",
"id": "CVE-2023-32246-8c5badf8",
"deprecated": false,
"signature_version": "v1",
"target": {
"function": "ksmbd_server_exit",
"file": "fs/ksmbd/server.c"
},
"digest": {
"length": 65.0,
"function_hash": "264992563689453691677580935417315808849"
},
"signature_type": "Function"
},
{
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@c053e389db0d892e2ff5a60ec5e533b976503795",
"id": "CVE-2023-32246-9ca1d9a2",
"deprecated": false,
"signature_version": "v1",
"target": {
"file": "fs/ksmbd/server.c"
},
"digest": {
"threshold": 0.9,
"line_hashes": [
"281405391604816662861263624559517783562",
"102101613279850499704848958245973912659",
"213808947558278820460272894316752090839",
"5795007056839250971309084018887735387"
]
},
"signature_type": "Line"
},
{
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@d4174505016a3b2996eb7ff1530dcabbf15d47b6",
"id": "CVE-2023-32246-b756cc94",
"deprecated": false,
"signature_version": "v1",
"target": {
"file": "fs/ksmbd/server.c"
},
"digest": {
"threshold": 0.9,
"line_hashes": [
"281405391604816662861263624559517783562",
"102101613279850499704848958245973912659",
"213808947558278820460272894316752090839",
"5795007056839250971309084018887735387"
]
},
"signature_type": "Line"
},
{
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@c053e389db0d892e2ff5a60ec5e533b976503795",
"id": "CVE-2023-32246-bcc852df",
"deprecated": false,
"signature_version": "v1",
"target": {
"function": "ksmbd_server_exit",
"file": "fs/ksmbd/server.c"
},
"digest": {
"length": 65.0,
"function_hash": "264992563689453691677580935417315808849"
},
"signature_type": "Function"
},
{
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@b80422474ffe44cb5e813cd6da1f1c6bc50fd9d2",
"id": "CVE-2023-32246-d89d03b7",
"deprecated": false,
"signature_version": "v1",
"target": {
"function": "ksmbd_server_exit",
"file": "fs/ksmbd/server.c"
},
"digest": {
"length": 65.0,
"function_hash": "264992563689453691677580935417315808849"
},
"signature_type": "Function"
},
{
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@eb307d09fe15844fdaebeb8cc8c9b9e925430aa5",
"id": "CVE-2023-32246-e98ae27c",
"deprecated": false,
"signature_version": "v1",
"target": {
"function": "ksmbd_server_exit",
"file": "fs/ksmbd/server.c"
},
"digest": {
"length": 65.0,
"function_hash": "264992563689453691677580935417315808849"
},
"signature_type": "Function"
}
]