CVE-2026-23229

MEDIUM EPSS 2.3%
Published Feb 18, 20264mo ago · Modified Jun 17, 20262w ago
5.5 CVSS 3.1
Medium
Find Similar
Published Feb 18, 2026 4mo ago
Last Modified Jun 17, 2026 2w ago

Description

In the Linux kernel, the following vulnerability has been resolved: crypto: virtio - Add spinlock protection with virtqueue notification When VM boots with one virtio-crypto PCI device and builtin backend, run openssl benchmark command with multiple processes, such as openssl speed -evp aes-128-cbc -engine afalg -seconds 10 -multi 32 openssl processes will hangup and there is error reported like this: virtio_crypto virtio0: dataq.0:id 3 is not a head! It seems that the data virtqueue need protection when it is handled for virtio done notification. If the spinlock protection is added in virtcrypto_done_task(), openssl benchmark with multiple processes works well.

CVSS Details

Base Score
5.5
Exploitability
1.8
Impact
3.6
Vector string
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Attack Vector Local
Attack Complexity Low
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality None
Integrity None
Availability High

Threat Intelligence

EPSS Exploit Probability
2.3% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Affected Products 9

VendorProductVersionRange
linuxlinux_kernel*≥4.19.306  –  <4.20
linuxlinux_kernel*≥5.4.268  –  <5.5
linuxlinux_kernel*≥5.10.209  –  <5.10.251
linuxlinux_kernel*≥5.15.148  –  <5.15.201
linuxlinux_kernel*≥6.1.75  –  <6.1.164
linuxlinux_kernel*≥6.6.14  –  <6.6.125
linuxlinux_kernel*≥6.7.2  –  <6.12.72
linuxlinux_kernel*≥6.13  –  <6.18.11
linuxlinux_kernel*≥6.19  –  <6.19.1

References 9

  • cert-portal.siemens.com https://cert-portal.siemens.com/productcert/html/ssa-253495.html
  • git.kernel.org https://git.kernel.org/stable/c/49c57c6c108931a914ed94e3c0ddb974008260a3
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/552475d0b6cece73a52c0fa5faa0ce45e99df74b
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/8ee8ccfd60bf17cbdab91069d324b5302f4f3a30
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/b505047ffc8057555900d2d3a005d033e6967382
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/c0a0ded3bb7fd45f720faa48449a930153257d3a
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/c9e594194795c86ca753ad6ed64c2762e9309d0d
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/d6f0d586808689963e58fd739bed626ff5013b24
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/e69a7b0a71b6561b3b6459f1fded8d589f2e8ac2
    Patch

Remediation

  • git.kernel.org https://git.kernel.org/stable/c/49c57c6c108931a914ed94e3c0ddb974008260a3
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/552475d0b6cece73a52c0fa5faa0ce45e99df74b
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/8ee8ccfd60bf17cbdab91069d324b5302f4f3a30
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/b505047ffc8057555900d2d3a005d033e6967382
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/c0a0ded3bb7fd45f720faa48449a930153257d3a
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/c9e594194795c86ca753ad6ed64c2762e9309d0d
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/d6f0d586808689963e58fd739bed626ff5013b24
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/e69a7b0a71b6561b3b6459f1fded8d589f2e8ac2
    Patch