ksmbd: Don’t log keys in SMB3 signing and encryption key...

8.1 / 10

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N

Description

In the Linux kernel, the following vulnerability has been resolved:

ksmbd: Don't log keys in SMB3 signing and encryption key generation

When KSMBD_DEBUG_AUTH logging is enabled, generate_smb3signingkey() and
generate_smb3encryptionkey() log the session, signing, encryption, and
decryption key bytes. Remove the logs to avoid exposing credentials.

Basic Information

ID CVE-2026-43377

Source Linux

Published May 8, 2026 at 14:21

Modified May 11, 2026 at 06:33

Affected Product

Vendor Linux

Product Linux

Version e2f34481b24db2fd634b5edb0a5bd0e4d38cc6e9

Affected Versions Linux Linux e2f34481b24db2fd634b5edb0a5bd0e4d38cc6e9
Linux Linux e2f34481b24db2fd634b5edb0a5bd0e4d38cc6e9
Linux Linux e2f34481b24db2fd634b5edb0a5bd0e4d38cc6e9
Linux Linux e2f34481b24db2fd634b5edb0a5bd0e4d38cc6e9
Linux Linux e2f34481b24db2fd634b5edb0a5bd0e4d38cc6e9
Linux Linux e2f34481b24db2fd634b5edb0a5bd0e4d38cc6e9
Linux Linux 5.15

References

{
    "lastseen": "",
    "description": "In the Linux kernel, the following vulnerability has been resolved:\n\nksmbd: Don't log keys in SMB3 signing and encryption key generation\n\nWhen KSMBD_DEBUG_AUTH logging is enabled, generate_smb3signingkey() and\ngenerate_smb3encryptionkey() log the session, signing, encryption, and\ndecryption key bytes. Remove the logs to avoid exposing credentials.",
    "published": "2026-05-08T14:21:26.618Z",
    "modified": "2026-05-11T06:33:57.158Z",
    "type": "cve",
    "title": "ksmbd: Don't log keys in SMB3 signing and encryption key generation",
    "source": "Linux",
    "references": "https://git.kernel.org/stable/c/4084ed720d7d5f4e975c9e4a6267a552dad3b24a\nhttps://git.kernel.org/stable/c/fec5c70b82af3f59f15bb984df94e5ad1fccfb1e\nhttps://git.kernel.org/stable/c/3fe2d9ec166b7df9a8df6c0fdcfc210572e27e3f\nhttps://git.kernel.org/stable/c/407cc37c21d51f9b9d4d20204b04890880cfa6ae\nhttps://git.kernel.org/stable/c/c6b01b997a2094969e315f1ebfc1d64b8ae2163d\nhttps://git.kernel.org/stable/c/441336115df26b966575de56daf7107ed474faed",
    "id": "CVE-2026-43377",
    "bulletinFamily": "",
    "cwe": null,
    "cvelist": null,
    "sourceData": "Linux Linux e2f34481b24db2fd634b5edb0a5bd0e4d38cc6e9\nLinux Linux e2f34481b24db2fd634b5edb0a5bd0e4d38cc6e9\nLinux Linux e2f34481b24db2fd634b5edb0a5bd0e4d38cc6e9\nLinux Linux e2f34481b24db2fd634b5edb0a5bd0e4d38cc6e9\nLinux Linux e2f34481b24db2fd634b5edb0a5bd0e4d38cc6e9\nLinux Linux e2f34481b24db2fd634b5edb0a5bd0e4d38cc6e9\nLinux Linux 5.15",
    "sourceHref": "",
    "cvss": {
        "score": 8.1,
        "severity": "HIGH",
        "vector": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "Linux",
    "version": "e2f34481b24db2fd634b5edb0a5bd0e4d38cc6e9",
    "vendor": "Linux",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}

ksmbd: Don’t log keys in SMB3 signing and encryption key generation_CVE-2026-43377

Description

Basic Information

Affected Product

References

💭 Join the Security Discussion ❌ Cancel Reply