CVE-2026-23223

HIGH EPSS 2.2%
Published Feb 18, 20264mo ago · Modified Jun 17, 20261w ago
7.8 CVSS 3.1
High
Find Similar
Published Feb 18, 2026 4mo ago
Last Modified Jun 17, 2026 1w ago

Description

In the Linux kernel, the following vulnerability has been resolved: xfs: fix UAF in xchk_btree_check_block_owner We cannot dereference bs->cur when trying to determine if bs->cur aliases bs->sc->sa.{bno,rmap}_cur after the latter has been freed. Fix this by sampling before type before any freeing could happen. The correct temporal ordering was broken when we removed xfs_btnum_t.

CVSS Details

Base Score
7.8
Exploitability
1.8
Impact
5.9
Vector string
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Attack Vector Local
Attack Complexity Low
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality High
Integrity High
Availability High

Threat Intelligence

EPSS Exploit Probability
2.2% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Weaknesses 1

CWE-416 Use After Free Memory Safety

Affected Products 3

VendorProductVersionRange
linuxlinux_kernel*≥6.9  –  <6.12.72
linuxlinux_kernel*≥6.13  –  <6.18.11
linuxlinux_kernel*≥6.19  –  <6.19.1

References 4

  • git.kernel.org https://git.kernel.org/stable/c/1c253e11225bc5167217897885b85093e17c2217
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/1d411278dda293a507cb794db7d9ed3511c685c6
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/ba5264610423d9653aa36920520902d83841bcfd
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/ed82e7949f5cac3058f4100f3cd670531d41a266
    Patch

Remediation

  • git.kernel.org https://git.kernel.org/stable/c/1c253e11225bc5167217897885b85093e17c2217
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/1d411278dda293a507cb794db7d9ed3511c685c6
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/ba5264610423d9653aa36920520902d83841bcfd
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/ed82e7949f5cac3058f4100f3cd670531d41a266
    Patch