The Linux kernel has several security flaws

Threat Level

Vulnerability Report

For a detailed threat advisory, download the pdf file here

Summary

The Linux kernel is vulnerable to a vulnerability that allows remote attackers to execute arbitrary code on affected installations. This vulnerability can be exploited without authentication, but only on systems that have ksmbd enabled. This flaw specifically affects SMB2_TREE_DISCONNECT commands. When an object’s existence is not validated before operations are performed on it, the vulnerability occurs. By exploiting this vulnerability, an attacker can execute code in the kernel’s context