CVE-2026-23121

MEDIUM EPSS 2.1%
Published Feb 14, 20264mo ago · Modified Jun 17, 20261w ago
5.5 CVSS 3.1
Medium
Find Similar
Published Feb 14, 2026 4mo ago
Last Modified Jun 17, 2026 1w ago

Description

In the Linux kernel, the following vulnerability has been resolved: mISDN: annotate data-race around dev->work dev->work can re read locklessly in mISDN_read() and mISDN_poll(). Add READ_ONCE()/WRITE_ONCE() annotations. BUG: KCSAN: data-race in mISDN_ioctl / mISDN_read write to 0xffff88812d848280 of 4 bytes by task 10864 on cpu 1: misdn_add_timer drivers/isdn/mISDN/timerdev.c:175 [inline] mISDN_ioctl+0x2fb/0x550 drivers/isdn/mISDN/timerdev.c:233 vfs_ioctl fs/ioctl.c:51 [inline] __do_sys_ioctl fs/ioctl.c:597 [inline] __se_sys_ioctl+0xce/0x140 fs/ioctl.c:583 __x64_sys_ioctl+0x43/0x50 fs/ioctl.c:583 x64_sys_call+0x14b0/0x3000 arch/x86/include/generated/asm/syscalls_64.h:17 do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline] do_syscall_64+0xd8/0x2c0 arch/x86/entry/syscall_64.c:94 entry_SYSCALL_64_after_hwframe+0x77/0x7f read to 0xffff88812d848280 of 4 bytes by task 10857 on cpu 0: mISDN_read+0x1f2/0x470 drivers/isdn/mISDN/timerdev.c:112 do_loop_readv_writev fs/read_write.c:847 [inline] vfs_readv+0x3fb/0x690 fs/read_write.c:1020 do_readv+0xe7/0x210 fs/read_write.c:1080 __do_sys_readv fs/read_write.c:1165 [inline] __se_sys_readv fs/read_write.c:1162 [inline] __x64_sys_readv+0x45/0x50 fs/read_write.c:1162 x64_sys_call+0x2831/0x3000 arch/x86/include/generated/asm/syscalls_64.h:20 do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline] do_syscall_64+0xd8/0x2c0 arch/x86/entry/syscall_64.c:94 entry_SYSCALL_64_after_hwframe+0x77/0x7f value changed: 0x00000000 -> 0x00000001

CVSS Details

Base Score
5.5
Exploitability
1.8
Impact
3.6
Vector string
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Attack Vector Local
Attack Complexity Low
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality None
Integrity None
Availability High

Threat Intelligence

EPSS Exploit Probability
2.1% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Affected Products 12

VendorProductVersionRange
linuxlinux_kernel*≥2.6.27  –  <5.10.249
linuxlinux_kernel*≥5.11  –  <5.15.199
linuxlinux_kernel*≥5.16  –  <6.1.162
linuxlinux_kernel*≥6.2  –  <6.6.122
linuxlinux_kernel*≥6.7  –  <6.12.68
linuxlinux_kernel*≥6.13  –  <6.18.8
linuxlinux_kernel6.19any
linuxlinux_kernel6.19any
linuxlinux_kernel6.19any
linuxlinux_kernel6.19any
linuxlinux_kernel6.19any
linuxlinux_kernel6.19any

References 7

  • git.kernel.org https://git.kernel.org/stable/c/13f3b3b87068898056db4c79ee67052fbde11d43
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/7ac345a93af31358e18e9606eb7b354691bf6757
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/8175dbf174d487afab81e936a862a8d9b8a1ccb6
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/aa6e33cd74ca4965f2bbcb025e0b672fb0168a69
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/accc3f8266d2a49881dbcf78c459477f4efa0ff3
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/d5d99cb9e0839093cd53aa3b28176fce2f820ca0
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/fc8ba17fd3337bd8b1913c30b95df0fee00d8fb7
    Patch

Remediation

  • git.kernel.org https://git.kernel.org/stable/c/13f3b3b87068898056db4c79ee67052fbde11d43
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/7ac345a93af31358e18e9606eb7b354691bf6757
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/8175dbf174d487afab81e936a862a8d9b8a1ccb6
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/aa6e33cd74ca4965f2bbcb025e0b672fb0168a69
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/accc3f8266d2a49881dbcf78c459477f4efa0ff3
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/d5d99cb9e0839093cd53aa3b28176fce2f820ca0
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/fc8ba17fd3337bd8b1913c30b95df0fee00d8fb7
    Patch