CVE-2026-23063
- Source
- https://cve.org/CVERecord?id=CVE-2026-23063
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2026-23063.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2026-23063
- Downstream
- Related
- Published
- 2026-02-04T16:07:45.426Z
- Modified
- 2026-05-07T04:17:15.231174Z
- Summary
- uacce: ensure safe queue release with state management
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
uacce: ensure safe queue release with state management
Directly calling
put_queuecarries risks since it cannot guarantee that resources ofuacce_queuehave been fully released beforehand. So adding astop_queueoperation for the UACCECMDPUT_Q command and leaving theput_queueoperation to the final resource release ensures safety.Queue states are defined as follows: - UACCEQZOMBIE: Initial state - UACCEQINIT: After opening
uacce- UACCEQSTARTED: Afterstartis issued viaioctlWhen executing
poweroff -fin virt while accelerator are still working,uacce_fops_releaseanduacce_removemay execute concurrently. This can causeuacce_put_queuewithinuacce_fops_releaseto access a NULLopspointer. Therefore, add state checks to prevent accessing freed pointers. - Database specific
{ "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/23xxx/CVE-2026-23063.json", "cna_assigner": "Linux" }- References
-
- https://git.kernel.org/stable/c/26c08dabe5475d99a13f353d8dd70e518de45663
- https://git.kernel.org/stable/c/336fb41a186e7c0415ae94fec9e23d1f04b87483
- https://git.kernel.org/stable/c/43f233eb6e7b9d88536881a9bc43726d0e34800d
- https://git.kernel.org/stable/c/47634d70073890c9c37e39ab4ff93d4b585b028a
- https://git.kernel.org/stable/c/8b57bf1d3b1db692f34bce694a03e41be79f6016
- https://git.kernel.org/stable/c/92e4f11e29b98ef424ff72d6371acac03e5d973c
- https://git.kernel.org/stable/c/b457abeb5d962db88aaf60e249402fd3073dbfab
- https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/23xxx/CVE-2026-23063.json
- https://nvd.nist.gov/vuln/detail/CVE-2026-23063
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected packages
Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected ranges
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced015d239ac0142ad0e26567fd890ef8d171f13709Fixedb457abeb5d962db88aaf60e249402fd3073dbfabFixed8b57bf1d3b1db692f34bce694a03e41be79f6016Fixed336fb41a186e7c0415ae94fec9e23d1f04b87483Fixed43f233eb6e7b9d88536881a9bc43726d0e34800dFixed47634d70073890c9c37e39ab4ff93d4b585b028aFixed92e4f11e29b98ef424ff72d6371acac03e5d973cFixed26c08dabe5475d99a13f353d8dd70e518de45663
Linux / Kernel
Package
- Name
- Kernel
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced5.7.0Fixed5.10.249
- Type
- ECOSYSTEM
- Events
-
Introduced5.11.0Fixed5.15.199
- Type
- ECOSYSTEM
- Events
-
Introduced5.16.0Fixed6.1.162
- Type
- ECOSYSTEM
- Events
-
Introduced6.2.0Fixed6.6.122
- Type
- ECOSYSTEM
- Events
-
Introduced6.7.0Fixed6.12.68
- Type
- ECOSYSTEM
- Events
-
Introduced6.13.0Fixed6.18.8