CVE-2026-23229
- Source
- https://cve.org/CVERecord?id=CVE-2026-23229
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2026-23229.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2026-23229
- Downstream
- Related
- Published
- 2026-02-18T14:53:33.015Z
- Modified
- 2026-03-20T17:44:16.426218Z
- Summary
- crypto: virtio - Add spinlock protection with virtqueue notification
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
crypto: virtio - Add spinlock protection with virtqueue notification
When VM boots with one virtio-crypto PCI device and builtin backend, run openssl benchmark command with multiple processes, such as openssl speed -evp aes-128-cbc -engine afalg -seconds 10 -multi 32
openssl processes will hangup and there is error reported like this: virtio_crypto virtio0: dataq.0:id 3 is not a head!
It seems that the data virtqueue need protection when it is handled for virtio done notification. If the spinlock protection is added in virtcryptodonetask(), openssl benchmark with multiple processes works well.
- Database specific
{ "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/23xxx/CVE-2026-23229.json", "cna_assigner": "Linux" }- References
-
- https://git.kernel.org/stable/c/49c57c6c108931a914ed94e3c0ddb974008260a3
- https://git.kernel.org/stable/c/552475d0b6cece73a52c0fa5faa0ce45e99df74b
- https://git.kernel.org/stable/c/8ee8ccfd60bf17cbdab91069d324b5302f4f3a30
- https://git.kernel.org/stable/c/b505047ffc8057555900d2d3a005d033e6967382
- https://git.kernel.org/stable/c/c0a0ded3bb7fd45f720faa48449a930153257d3a
- https://git.kernel.org/stable/c/c9e594194795c86ca753ad6ed64c2762e9309d0d
- https://git.kernel.org/stable/c/d6f0d586808689963e58fd739bed626ff5013b24
- https://git.kernel.org/stable/c/e69a7b0a71b6561b3b6459f1fded8d589f2e8ac2
- https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/23xxx/CVE-2026-23229.json
- https://nvd.nist.gov/vuln/detail/CVE-2026-23229
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected packages
Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected ranges
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced0eb69890e86775d178452880ea0d24384c5ccedfFixed552475d0b6cece73a52c0fa5faa0ce45e99df74b
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced75cba72ddb788a5b9c7ed2139fbb84383df029ebFixed8ee8ccfd60bf17cbdab91069d324b5302f4f3a30
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introducedae4747dab2eab95a68bb2f6c7e904bff0424e1b1Fixedc9e594194795c86ca753ad6ed64c2762e9309d0d
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introducedc4c54fce9ec54a59a4ca035af13c2823c76684ccFixedd6f0d586808689963e58fd739bed626ff5013b24
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introducedfed93fb62e05c38152b0fc1dc9609639e63eed76Fixedc0a0ded3bb7fd45f720faa48449a930153257d3aFixede69a7b0a71b6561b3b6459f1fded8d589f2e8ac2Fixed49c57c6c108931a914ed94e3c0ddb974008260a3Fixedb505047ffc8057555900d2d3a005d033e6967382
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced0 Unknown introduced commit / All previous commits are affectedLast affected96be18c8fff9d57e29621386e2fa17268383ea27Last affected830a4f073f7edd2cc4f30ba95bdc3495d97c2550Last affected8862c0d2e47ba1733d9687fe0ff4e02d6e391255