CVE-2026-23364

ADVISORY - nist

Summary

In the Linux kernel, the following vulnerability has been resolved:

ksmbd: Compare MACs in constant time

To prevent timing attacks, MAC comparisons need to be constant-time. Replace the memcmp() with the correct function, crypto_memneq().

EPSS Score: 0.00392 (0.312)

Common Weakness Enumeration (CWE)

ADVISORY - nist
ADVISORY - redhat

Observable Timing Discrepancy


Sign in to Docker Scout

See which of your images are affected by this CVE and how to fix them by signing into Docker Scout.

Sign in