Medium severity6.5NVD Advisory· Published May 27, 2026· Updated Jun 15, 2026
CVE-2026-2340
CVE-2026-2340
Description
A flaw was found in Samba’s vfs_worm module. The module is intended to provide write-once, read-many (WORM) protections by preventing modification of files after a configurable grace period. Due to insufficient validation during rename operations, an authenticated user with write access to a share could overwrite a protected file by renaming a newly created file over the existing WORM-protected file.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
85- osv-coords84 versionspkg:apk/chainguard/libauth-sambapkg:apk/chainguard/libsmbclientpkg:apk/chainguard/libwbclientpkg:apk/chainguard/py3.13-sambapkg:apk/chainguard/sambapkg:apk/chainguard/samba-clientpkg:apk/chainguard/samba-commonpkg:apk/chainguard/samba-common-server-libspkg:apk/chainguard/samba-common-toolspkg:apk/chainguard/samba-devpkg:apk/chainguard/samba-libnss-winbindpkg:apk/chainguard/samba-libspkg:apk/chainguard/samba-libs-py3pkg:apk/chainguard/samba-pam-winbindpkg:apk/chainguard/samba-serverpkg:apk/chainguard/samba-server-libspkg:apk/chainguard/samba-testpkg:apk/chainguard/samba-util-libspkg:apk/chainguard/samba-winbind-clientspkg:apk/chainguard/samba-winbind-krb5-locatorpkg:apk/chainguard/winbindpkg:apk/wolfi/libauth-sambapkg:apk/wolfi/libsmbclientpkg:apk/wolfi/libwbclientpkg:apk/wolfi/py3.13-sambapkg:apk/wolfi/sambapkg:apk/wolfi/samba-clientpkg:apk/wolfi/samba-commonpkg:apk/wolfi/samba-common-server-libspkg:apk/wolfi/samba-common-toolspkg:apk/wolfi/samba-devpkg:apk/wolfi/samba-libnss-winbindpkg:apk/wolfi/samba-libspkg:apk/wolfi/samba-libs-py3pkg:apk/wolfi/samba-pam-winbindpkg:apk/wolfi/samba-serverpkg:apk/wolfi/samba-server-libspkg:apk/wolfi/samba-testpkg:apk/wolfi/samba-util-libspkg:apk/wolfi/samba-winbind-clientspkg:apk/wolfi/samba-winbind-krb5-locatorpkg:apk/wolfi/winbindpkg:rpm/almalinux/ldb-toolspkg:rpm/almalinux/libldbpkg:rpm/almalinux/libldb-develpkg:rpm/almalinux/libnetapipkg:rpm/almalinux/libnetapi-develpkg:rpm/almalinux/libsmbclientpkg:rpm/almalinux/libsmbclient-develpkg:rpm/almalinux/libwbclientpkg:rpm/almalinux/libwbclient-develpkg:rpm/almalinux/python3-ldbpkg:rpm/almalinux/python3-sambapkg:rpm/almalinux/python3-samba-dcpkg:rpm/almalinux/python3-samba-testpkg:rpm/almalinux/sambapkg:rpm/almalinux/samba-clientpkg:rpm/almalinux/samba-client-libspkg:rpm/almalinux/samba-commonpkg:rpm/almalinux/samba-common-libspkg:rpm/almalinux/samba-common-toolspkg:rpm/almalinux/samba-dcerpcpkg:rpm/almalinux/samba-dc-libspkg:rpm/almalinux/samba-develpkg:rpm/almalinux/samba-gpupdatepkg:rpm/almalinux/samba-krb5-printingpkg:rpm/almalinux/samba-ldb-ldap-modulespkg:rpm/almalinux/samba-libspkg:rpm/almalinux/samba-pidlpkg:rpm/almalinux/samba-testpkg:rpm/almalinux/samba-test-libspkg:rpm/almalinux/samba-toolspkg:rpm/almalinux/samba-usersharespkg:rpm/almalinux/samba-vfs-iouringpkg:rpm/almalinux/samba-winbindpkg:rpm/almalinux/samba-winbind-clientspkg:rpm/almalinux/samba-winbind-krb5-locatorpkg:rpm/almalinux/samba-winbind-modulespkg:rpm/almalinux/samba-winexepkg:rpm/opensuse/samba&distro=openSUSE%20Leap%2016.0pkg:rpm/opensuse/samba&distro=openSUSE%20Tumbleweedpkg:rpm/suse/samba&distro=SUSE%20Linux%20Enterprise%20Server%2016.0pkg:rpm/suse/samba&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20applications%2016.0pkg:rpm/suse/samba&distro=SUSE%20Linux%20Micro%206.2
< 4.24.3-r0+ 83 more
- (no CPE)range: < 4.24.3-r0
- (no CPE)range: < 4.24.3-r0
- (no CPE)range: < 4.24.3-r0
- (no CPE)range: < 4.24.3-r0
- (no CPE)range: < 4.24.3-r0
- (no CPE)range: < 4.24.3-r0
- (no CPE)range: < 4.24.3-r0
- (no CPE)range: < 4.24.3-r0
- (no CPE)range: < 4.24.3-r0
- (no CPE)range: < 4.24.3-r0
- (no CPE)range: < 4.24.3-r0
- (no CPE)range: < 4.24.3-r0
- (no CPE)range: < 4.24.3-r0
- (no CPE)range: < 4.24.3-r0
- (no CPE)range: < 4.24.3-r0
- (no CPE)range: < 4.24.3-r0
- (no CPE)range: < 4.24.3-r0
- (no CPE)range: < 4.24.3-r0
- (no CPE)range: < 4.24.3-r0
- (no CPE)range: < 4.24.3-r0
- (no CPE)range: < 4.24.3-r0
- (no CPE)range: < 4.24.3-r0
- (no CPE)range: < 4.24.3-r0
- (no CPE)range: < 4.24.3-r0
- (no CPE)range: < 4.24.3-r0
- (no CPE)range: < 4.24.3-r0
- (no CPE)range: < 4.24.3-r0
- (no CPE)range: < 4.24.3-r0
- (no CPE)range: < 4.24.3-r0
- (no CPE)range: < 4.24.3-r0
- (no CPE)range: < 4.24.3-r0
- (no CPE)range: < 4.24.3-r0
- (no CPE)range: < 4.24.3-r0
- (no CPE)range: < 4.24.3-r0
- (no CPE)range: < 4.24.3-r0
- (no CPE)range: < 4.24.3-r0
- (no CPE)range: < 4.24.3-r0
- (no CPE)range: < 4.24.3-r0
- (no CPE)range: < 4.24.3-r0
- (no CPE)range: < 4.24.3-r0
- (no CPE)range: < 4.24.3-r0
- (no CPE)range: < 4.24.3-r0
- (no CPE)range: < 4.23.5-109.el10_2
- (no CPE)range: < 4.23.5-109.el10_2
- (no CPE)range: < 4.23.5-109.el10_2
- (no CPE)range: < 4.23.5-109.el10_2
- (no CPE)range: < 4.23.5-109.el10_2
- (no CPE)range: < 4.23.5-109.el10_2
- (no CPE)range: < 4.23.5-109.el10_2
- (no CPE)range: < 4.23.5-109.el10_2
- (no CPE)range: < 4.23.5-109.el10_2
- (no CPE)range: < 4.23.5-109.el10_2
- (no CPE)range: < 4.23.5-109.el10_2
- (no CPE)range: < 4.23.5-109.el10_2
- (no CPE)range: < 4.23.5-109.el10_2
- (no CPE)range: < 4.23.5-109.el10_2
- (no CPE)range: < 4.23.5-109.el10_2
- (no CPE)range: < 4.23.5-109.el10_2
- (no CPE)range: < 4.23.5-109.el10_2
- (no CPE)range: < 4.23.5-109.el10_2
- (no CPE)range: < 4.23.5-109.el10_2
- (no CPE)range: < 4.23.5-109.el10_2
- (no CPE)range: < 4.23.5-109.el10_2
- (no CPE)range: < 4.23.5-109.el10_2
- (no CPE)range: < 4.23.5-109.el10_2
- (no CPE)range: < 4.23.5-109.el10_2
- (no CPE)range: < 4.23.5-109.el10_2
- (no CPE)range: < 4.23.5-109.el10_2
- (no CPE)range: < 4.23.5-109.el10_2
- (no CPE)range: < 4.23.5-109.el10_2
- (no CPE)range: < 4.23.5-109.el10_2
- (no CPE)range: < 4.23.5-109.el10_2
- (no CPE)range: < 4.23.5-109.el10_2
- (no CPE)range: < 4.23.5-109.el10_2
- (no CPE)range: < 4.23.5-109.el10_2
- (no CPE)range: < 4.23.5-109.el10_2
- (no CPE)range: < 4.23.5-109.el10_2
- (no CPE)range: < 4.23.5-109.el10_2
- (no CPE)range: < 4.23.5-109.el10_2
- (no CPE)range: < 4.22.9+git.506.22c03ce0781-160000.1.1
- (no CPE)range: < 4.23.8+git.477.f78166bceed-1.1
- (no CPE)range: < 4.22.9+git.506.22c03ce0781-160000.1.1
- (no CPE)range: < 4.22.9+git.506.22c03ce0781-160000.1.1
- (no CPE)range: < 4.22.9+git.506.22c03ce0781-160000.1.1
Patches
Vulnerability mechanics
References
6- access.redhat.com/security/cve/CVE-2026-2340nvdMitigationThird Party Advisory
- bugzilla.redhat.com/show_bug.cginvdIssue TrackingThird Party Advisory
- bugzilla.samba.org/show_bug.cginvdIssue TrackingVendor Advisory
- access.redhat.com/errata/RHSA-2026:22963nvd
- access.redhat.com/errata/RHSA-2026:25049nvd
- access.redhat.com/errata/RHSA-2026:25979nvd
News mentions
0No linked articles in our index yet.