CVE-2026-23071

MEDIUM EPSS 1.0%
Published Feb 4, 20264mo ago · Modified Jun 17, 20262w ago
4.7 CVSS 3.1
Medium
Find Similar
Published Feb 4, 2026 4mo ago
Last Modified Jun 17, 2026 2w ago

Description

In the Linux kernel, the following vulnerability has been resolved: regmap: Fix race condition in hwspinlock irqsave routine Previously, the address of the shared member '&map->spinlock_flags' was passed directly to 'hwspin_lock_timeout_irqsave'. This creates a race condition where multiple contexts contending for the lock could overwrite the shared flags variable, potentially corrupting the state for the current lock owner. Fix this by using a local stack variable 'flags' to store the IRQ state temporarily.

CVSS Details

Base Score
4.7
Exploitability
1.0
Impact
3.6
Vector string
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H
Attack Vector Local
Attack Complexity High
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality None
Integrity None
Availability High

Threat Intelligence

EPSS Exploit Probability
1.0% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Weaknesses 1

CWE-362

Affected Products 12

VendorProductVersionRange
linuxlinux_kernel*≥4.15  –  <5.10.249
linuxlinux_kernel*≥5.11  –  <5.15.199
linuxlinux_kernel*≥5.16  –  <6.1.162
linuxlinux_kernel*≥6.2  –  <6.6.122
linuxlinux_kernel*≥6.7  –  <6.12.68
linuxlinux_kernel*≥6.13  –  <6.18.8
linuxlinux_kernel6.19any
linuxlinux_kernel6.19any
linuxlinux_kernel6.19any
linuxlinux_kernel6.19any
linuxlinux_kernel6.19any
linuxlinux_kernel6.19any

References 7

  • git.kernel.org https://git.kernel.org/stable/c/24f31be6ad70537fd7706269d99c92cade465a09
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/4aab0ca0a0f7760e33edcb4e47576064d05128f5
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/4b58aac989c1e3fafb1c68a733811859df388250
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/766e243ae8c8b27087a4cc605752c0d5ee2daeab
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/c2d2cf710dc3ee1a69e00b4ed8de607a92a07889
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/e1a7072bc4f958c9e852dc7e57e39f12b0bb44b5
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/f1e2fe26a51eca95b41420af76d22c2e613efd5e
    Patch

Remediation

  • git.kernel.org https://git.kernel.org/stable/c/24f31be6ad70537fd7706269d99c92cade465a09
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/4aab0ca0a0f7760e33edcb4e47576064d05128f5
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/4b58aac989c1e3fafb1c68a733811859df388250
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/766e243ae8c8b27087a4cc605752c0d5ee2daeab
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/c2d2cf710dc3ee1a69e00b4ed8de607a92a07889
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/e1a7072bc4f958c9e852dc7e57e39f12b0bb44b5
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/f1e2fe26a51eca95b41420af76d22c2e613efd5e
    Patch