vulnerability
SUSE: CVE-2026-2340: SUSE Linux Security Advisory
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 7 | (AV:N/AC:L/Au:S/C:N/I:C/A:N) | May 27, 2026 | May 27, 2026 | Jun 9, 2026 |
Severity
7
CVSS
(AV:N/AC:L/Au:S/C:N/I:C/A:N)
Published
May 27, 2026
Added
May 27, 2026
Modified
Jun 9, 2026
Description
A flaw was found in Samba’s vfs_worm module. The module is intended to provide write-once, read-many (WORM) protections by preventing modification of files after a configurable grace period. Due to insufficient validation during rename operations, an authenticated user with write access to a share could overwrite a protected file by renaming a newly created file over the existing WORM-protected file.
Solutions
suse-upgrade-ctdbsuse-upgrade-ctdb-pcp-pmdasuse-upgrade-ldb-toolssuse-upgrade-libldb-develsuse-upgrade-libldb2suse-upgrade-libldb2-32bitsuse-upgrade-libsamba-policy-develsuse-upgrade-libsamba-policy-python3-develsuse-upgrade-libsamba-policy0-python3suse-upgrade-libsamba-policy0-python3-32bitsuse-upgrade-python3-ldbsuse-upgrade-sambasuse-upgrade-samba-ad-dcsuse-upgrade-samba-ad-dc-libssuse-upgrade-samba-ad-dc-libs-32bitsuse-upgrade-samba-cephsuse-upgrade-samba-clientsuse-upgrade-samba-client-32bitsuse-upgrade-samba-client-libssuse-upgrade-samba-client-libs-32bitsuse-upgrade-samba-dcerpcsuse-upgrade-samba-develsuse-upgrade-samba-devel-32bitsuse-upgrade-samba-docsuse-upgrade-samba-dsdb-modulessuse-upgrade-samba-gpupdatesuse-upgrade-samba-ldb-ldapsuse-upgrade-samba-libssuse-upgrade-samba-libs-32bitsuse-upgrade-samba-libs-python3suse-upgrade-samba-libs-python3-32bitsuse-upgrade-samba-python3suse-upgrade-samba-testsuse-upgrade-samba-toolsuse-upgrade-samba-winbindsuse-upgrade-samba-winbind-libssuse-upgrade-samba-winbind-libs-32bit
Rapid7 Labs
2026 Global Threat Landscape Report
The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.