CVE-2026-23223
- Source
- https://cve.org/CVERecord?id=CVE-2026-23223
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2026-23223.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2026-23223
- Downstream
- Related
- Published
- 2026-02-18T14:53:26.603Z
- Modified
- 2026-04-02T17:30:24.545334034Z
- Summary
- xfs: fix UAF in xchk_btree_check_block_owner
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
xfs: fix UAF in xchkbtreecheckblockowner
We cannot dereference bs->cur when trying to determine if bs->cur aliases bs->sc->sa.{bno,rmap}cur after the latter has been freed. Fix this by sampling before type before any freeing could happen. The correct temporal ordering was broken when we removed xfsbtnum_t.
- Database specific
{ "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/23xxx/CVE-2026-23223.json", "cna_assigner": "Linux" }- References
-
- https://git.kernel.org/stable/c/1c253e11225bc5167217897885b85093e17c2217
- https://git.kernel.org/stable/c/1d411278dda293a507cb794db7d9ed3511c685c6
- https://git.kernel.org/stable/c/ba5264610423d9653aa36920520902d83841bcfd
- https://git.kernel.org/stable/c/ed82e7949f5cac3058f4100f3cd670531d41a266
- https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/23xxx/CVE-2026-23223.json
- https://nvd.nist.gov/vuln/detail/CVE-2026-23223
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected packages
Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected ranges
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introducedec793e690f801d97a7ae2a0d429fea1fee4d44aaFixed1d411278dda293a507cb794db7d9ed3511c685c6Fixeded82e7949f5cac3058f4100f3cd670531d41a266Fixedba5264610423d9653aa36920520902d83841bcfdFixed1c253e11225bc5167217897885b85093e17c2217