Linux Kernel ksmbd: Constant-Time MAC Comparison Fix
CVE-2026-23364 Published on March 25, 2026
ksmbd: Compare MACs in constant time
In the Linux kernel, the following vulnerability has been resolved:
ksmbd: Compare MACs in constant time
To prevent timing attacks, MAC comparisons need to be constant-time.
Replace the memcmp() with the correct function, crypto_memneq().
Products Associated with CVE-2026-23364
Want to know whenever a new CVE is published for Linux Kernel? stack.watch will email you.
Affected Versions
Linux:- Version e2f34481b24db2fd634b5edb0a5bd0e4d38cc6e9 and below cd52a0e309659537048a864211abc3ea4c5caa63 is affected.
- Version e2f34481b24db2fd634b5edb0a5bd0e4d38cc6e9 and below 307afccb751f542246bd5dc68a2c1ffe1a78418c is affected.
- Version e2f34481b24db2fd634b5edb0a5bd0e4d38cc6e9 and below 2cdc56ed67615ba0921383a688f24415ebe065f3 is affected.
- Version e2f34481b24db2fd634b5edb0a5bd0e4d38cc6e9 and below 93c0a22fec914ec4b697e464895a0f594e29fb28 is affected.
- Version e2f34481b24db2fd634b5edb0a5bd0e4d38cc6e9 and below f4588b85efd6007d46b80aa1b9fb746628ffb3dc is affected.
- Version e2f34481b24db2fd634b5edb0a5bd0e4d38cc6e9 and below c5794709bc9105935dbedef8b9cf9c06f2b559fa is affected.
- Version 5.15 is affected.
- Before 5.15 is unaffected.
- Version 6.1.167, <= 6.1.* is unaffected.
- Version 6.6.130, <= 6.6.* is unaffected.
- Version 6.12.78, <= 6.12.* is unaffected.
- Version 6.18.19, <= 6.18.* is unaffected.
- Version 6.19.7, <= 6.19.* is unaffected.
- Version 7.0-rc2, <= * is unaffected.