CVE-2026-23302
- Source
- https://cve.org/CVERecord?id=CVE-2026-23302
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2026-23302.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2026-23302
- Downstream
- Published
- 2026-03-25T10:26:57.470Z
- Modified
- 2026-04-19T04:16:00.484645Z
- Summary
- net: annotate data-races around sk->sk_{data_ready,write_space}
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
net: annotate data-races around sk->sk_{dataready,writespace}
skmsg (and probably other layers) are changing these pointers while other cpus might read them concurrently.
Add corresponding READONCE()/WRITEONCE() annotations for UDP, TCP and AF_UNIX.
- Database specific
{ "cna_assigner": "Linux", "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/23xxx/CVE-2026-23302.json" }- References
-
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- https://git.kernel.org/stable/c/27fccdbcbbfc4651b6f66756e6fa3f52e051ec23
- https://git.kernel.org/stable/c/2ef2b20cf4e04ac8a6ba68493f8780776ff84300
- https://git.kernel.org/stable/c/c494448bb522bbbb63096540eb2319101a0480ab
- https://git.kernel.org/stable/c/f17c1c4acbe2bd702abce73a847a04a196fab2c5
- https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/23xxx/CVE-2026-23302.json
- https://nvd.nist.gov/vuln/detail/CVE-2026-23302
Affected packages
Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected ranges
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced604326b41a6fb9b4a78b6179335decee0365cd8cFixedc494448bb522bbbb63096540eb2319101a0480abFixedf17c1c4acbe2bd702abce73a847a04a196fab2c5Fixed27fccdbcbbfc4651b6f66756e6fa3f52e051ec23Fixed2ef2b20cf4e04ac8a6ba68493f8780776ff84300