CVE-2026-43376

A flaw was found in ksmbd in the Linux kernel. The `oplock_info` structure is immediately freed using `kfree()` without an RCU (Read-Copy-Update) grace period, even though it can still be accessed by readers. This improper memory deallocation can lead to a use-after-free vulnerability, particularly in the `opinfo_get()` function, where operations are performed on already freed memory. A local attacker could potentially exploit this to cause system instability or a denial of service.