Wind River Support Network

HomeDefectsLIN1021-7343

Acknowledged

LIN1021-7343 : Security Advisory - linux - CVE-2024-26594

Created: Feb 24, 2024 Updated: Jan 7, 2026

Resolved Date: Jan 21, 2025

Found In Version: 10.21.20.1

Severity: Standard

Applicable for: Wind River Linux LTS 21

Component/s: Kernel

Description

In the Linux kernel, the following vulnerability has been resolved:

ksmbd: validate mech token in session setup

If client send invalid mech token in session setup request, ksmbd
validate and make the error if it is invalid.

CREATE(Triage):(User=admin) CVE-2024-26594 (https://nvd.nist.gov/vuln/detail/CVE-2024-26594)