Logo
Retour à la veille

CVE-2026-52911

Publié : 21 juin 2026
Modifié : 21 juin 2026
Lien officiel NVD

Description détaillée

In the Linux kernel, the following vulnerability has been resolved: ksmbd: scope conn->binding slowpath to bound sessions only When the binding SESSION_SETUP sets conn->binding = true, the flag stays set after the call so that the global session lookup in ksmbd_session_lookup_all() can find the session, which was not added to conn->sessions. Because the flag is connection-wide, the global lookup path will also resolve any other session by id if asked. Tighten the global lookup so that the returned session must have this connection registered in its channel xarray (sess->ksmbd_chann_list). The channel entry is installed by the existing binding_session path in ntlm_authenticate()/krb5_authenticate() when a SESSION_SETUP completes successfully, so this condition is a strict equivalent of "this connection has been accepted as a channel of this session". Connections that have not bound to a given session cannot reach it via the global table. The existing conn->binding gate for entering the slowpath is preserved so that non-binding connections keep the fast-path-only behavior, and the session->state check is unchanged.

Références et Patchs

https://git.kernel.org/stable/c/1e2bec062c5c9ec282636715166056d0998d746dhttps://git.kernel.org/stable/c/1ff46c9915c1cbf454db58a8cb87f7cac818e6a6https://git.kernel.org/stable/c/2cc8a4db633b10715450b291c1343859a4b2c509https://git.kernel.org/stable/c/974c1c224e85549dc3459f3bb2255bbbdd2b9372https://git.kernel.org/stable/c/b0da97c034b6107d14e537e212d4ce8b22109a58https://git.kernel.org/stable/c/e3a93ce6e25757b8f375e38b8f91e1d9da4edc1ahttps://git.kernel.org/stable/c/e74c00c6af428a39e564cdc5bd3a3648c6d8de87

Dernières Vulnérabilités

CVE-2026-12795

A vulnerability was determined in BerriAI litellm up to 1.82.2. This affects the function json.dumps of the file litellm/proxy/management_endpoints/ui_sso.py of the component SSO Debug Flow. Executing a manipulation can lead to missing authentication. The attack can be executed remotely. The exploit has been publicly disclosed and may be utilized. The vendor was contacted early about this disclosure.

VOIR DÉTAILS

CVE-2026-12789

A vulnerability was identified in ILIAS Learning Management System 11.0. This issue affects the function ilTrQuery::executeQueries of the file components/ILIAS/Tracking/classes/class.ilTrQuery.php of the component Learning Progress Tracking. Such manipulation of the argument troup_table_nav leads to sql injection. It is possible to launch the attack remotely. The exploit is publicly available and might be used. The vendor was contacted early about this disclosure but did not respond in any way.

VOIR DÉTAILS

CVE-2026-12788

A vulnerability was determined in zhilink 智互联(深圳)科技有限公司 ADP Application Developer Platform 应用开发者平台 1.0.0. This vulnerability affects unknown code of the file /adpweb/a/base/barcodeDetail/import of the component XML Parser. This manipulation causes xml external entity reference. It is possible to initiate the attack remotely. The exploit has been publicly disclosed and may be utilized. The vendor was contacted early about this disclosure but did not respond in any way.

VOIR DÉTAILS