CVE-2026-23087

MEDIUM EPSS 2.4%
Published Feb 4, 20264mo ago · Modified Jun 17, 20262w ago
5.5 CVSS 3.1
Medium
Find Similar
Published Feb 4, 2026 4mo ago
Last Modified Jun 17, 2026 2w ago

Description

In the Linux kernel, the following vulnerability has been resolved: scsi: xen: scsiback: Fix potential memory leak in scsiback_remove() Memory allocated for struct vscsiblk_info in scsiback_probe() is not freed in scsiback_remove() leading to potential memory leaks on remove, as well as in the scsiback_probe() error paths. Fix that by freeing it in scsiback_remove().

CVSS Details

Base Score
5.5
Exploitability
1.8
Impact
3.6
Vector string
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Attack Vector Local
Attack Complexity Low
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality None
Integrity None
Availability High

Threat Intelligence

EPSS Exploit Probability
2.4% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Weaknesses 1

CWE-401

Affected Products 12

VendorProductVersionRange
linuxlinux_kernel*≥3.18  –  <5.10.249
linuxlinux_kernel*≥5.11  –  <5.15.199
linuxlinux_kernel*≥5.16  –  <6.1.162
linuxlinux_kernel*≥6.2  –  <6.6.122
linuxlinux_kernel*≥6.7  –  <6.12.68
linuxlinux_kernel*≥6.13  –  <6.18.8
linuxlinux_kernel6.19any
linuxlinux_kernel6.19any
linuxlinux_kernel6.19any
linuxlinux_kernel6.19any
linuxlinux_kernel6.19any
linuxlinux_kernel6.19any

References 7

  • git.kernel.org https://git.kernel.org/stable/c/24c441f0e24da175d7912095663f526ac480dc4f
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/32e52b56056daf0f0881fd9254706acf25b4be97
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/427b0fb30ddec3bad05dcd73b00718f98c7026d2
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/4a975c72429b050c234405668b742cdecc11548e
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/901a5f309daba412e2a30364d7ec1492fa11c32c
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/a8bb3ec8d85951a56af0a72d93ccbc2aee42eef9
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/f86264ec0e2b102fcd49bf3e4f32fee669d482fc
    Patch

Remediation

  • git.kernel.org https://git.kernel.org/stable/c/24c441f0e24da175d7912095663f526ac480dc4f
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/32e52b56056daf0f0881fd9254706acf25b4be97
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/427b0fb30ddec3bad05dcd73b00718f98c7026d2
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/4a975c72429b050c234405668b742cdecc11548e
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/901a5f309daba412e2a30364d7ec1492fa11c32c
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/a8bb3ec8d85951a56af0a72d93ccbc2aee42eef9
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/f86264ec0e2b102fcd49bf3e4f32fee669d482fc
    Patch