CVE-2023-53358
- Source
- https://cve.org/CVERecord?id=CVE-2023-53358
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2023-53358.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2023-53358
- Downstream
- Published
- 2025-09-17T14:56:48.812Z
- Modified
- 2026-04-02T09:44:04.009467Z
- Severity
-
- 7.0 (High) CVSS_V3 - CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H CVSS Calculator
- Summary
- ksmbd: fix racy issue under cocurrent smb2 tree disconnect
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
ksmbd: fix racy issue under cocurrent smb2 tree disconnect
There is UAF issue under cocurrent smb2 tree disconnect. This patch introduce TREECONNEXPIRE flags for tcon to avoid cocurrent access.
- Database specific
{ "cna_assigner": "Linux", "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2023/53xxx/CVE-2023-53358.json" }- References
-
- https://git.kernel.org/stable/c/30210947a343b6b3ca13adc9bfc88e1543e16dd5
- https://git.kernel.org/stable/c/39366b47a59d46af15ac57beb0996268bf911f6a
- https://git.kernel.org/stable/c/b36295c17fb97424406f0c3ab321b1ccaabb9be8
- https://git.kernel.org/stable/c/bd80d35725a0cf4df9307bfe2f1a3b2cb983d8e6
- https://git.kernel.org/stable/c/dc1c17716c099c90948ebb83e2170dd75a3be6b6
- https://github.com/CVEProject/cvelistV5/tree/main/cves/2023/53xxx/CVE-2023-53358.json
- https://nvd.nist.gov/vuln/detail/CVE-2023-53358
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected packages
Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected ranges
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced0626e6641f6b467447c81dd7678a69c66f7746cfFixedb36295c17fb97424406f0c3ab321b1ccaabb9be8Fixedbd80d35725a0cf4df9307bfe2f1a3b2cb983d8e6Fixeddc1c17716c099c90948ebb83e2170dd75a3be6b6Fixed39366b47a59d46af15ac57beb0996268bf911f6aFixed30210947a343b6b3ca13adc9bfc88e1543e16dd5