cve 2026 23228

The tag cve 2026 23228 covers a specific Linux kernel security vulnerability in the ksmbd in-kernel SMB server. The issue involves a resource-accounting leak where the per-transport connection counter active_num_conn is not properly decremented on connection setup failures, leading to potential resource exhaustion and denial of service. A patch has been released to correct this accounting leak, closing CVE-2026-23228. This tag is relevant for Linux system administrators and security professionals managing SMB server hosts who need to understand and apply the fix to prevent subtle denial-of-service vectors.