Race Condition During Access to Alternate Channel

CVE-2023-32256

High

7.5/10

Summary

A flaw was found in the Linux kernel's ksmbd component. A race condition between smb2 close operation and logoff in multichannel connections could result in a use-after-free issue.

Attack Complexity: HIGH
Attack Vector: NETWORK
Integrity Impact: NONE
Scope: CHANGED
User Interaction: NONE
Privileges Required: NONE
Confidentiality Impact: LOW
Availability Impact: HIGH

CWE-421 - Race Condition During Access to Alternate Channel

The product opens an alternate channel to communicate with an authorized user, but the channel is accessible to other actors.

References

Advisory Timeline

Published Aug 01, 2025

Race Condition During Access to Alternate Channel

CVE-2023-32256

Summary

CWE-421 - Race Condition During Access to Alternate Channel

References

Advisory Timeline

ChainJacking

JetBrains IDE

KICS SaaS