CVE-2026-23309
- Source
- https://cve.org/CVERecord?id=CVE-2026-23309
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2026-23309.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2026-23309
- Downstream
- Published
- 2026-03-25T10:27:04.828Z
- Modified
- 2026-04-14T05:03:06.009450Z
- Summary
- tracing: Add NULL pointer check to trigger_data_free()
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
tracing: Add NULL pointer check to triggerdatafree()
If triggerdataalloc() fails and returns NULL, eventhisttriggerparse() jumps to the outfree error path. While kfree() safely handles a NULL pointer, triggerdatafree() does not. This causes a NULL pointer dereference in triggerdatafree() when evaluating data->cmdops->setfilter.
Fix the problem by adding a NULL pointer check to triggerdatafree().
The problem was found by an experimental code review agent based on gemini-3.1-pro while reviewing backports into v6.18.y.
- Database specific
{ "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/23xxx/CVE-2026-23309.json", "cna_assigner": "Linux" }- References
-
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- https://git.kernel.org/stable/c/13dcd9269e225e4c4ceabdaeebe2ce4661b54c6e
- https://git.kernel.org/stable/c/2ce8ece5a78da67834db7728edc801889a64f643
- https://git.kernel.org/stable/c/42b380f97d65e76e7b310facd525f730272daf57
- https://git.kernel.org/stable/c/457965c13f0837a289c9164b842d0860133f6274
- https://git.kernel.org/stable/c/477469223b2b840f436ce204333de87cb17e5d93
- https://git.kernel.org/stable/c/59c15b9cc453b74beb9f04c6c398717e73612dc3
- https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/23xxx/CVE-2026-23309.json
- https://nvd.nist.gov/vuln/detail/CVE-2026-23309
Affected packages
Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected ranges
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introducedc10f0efe57728508d796ae4ba7abe4c14ec3d8efFixed13dcd9269e225e4c4ceabdaeebe2ce4661b54c6e
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced7e6556e9329bc484e9dcdab6e346d959267c0636Fixed59c15b9cc453b74beb9f04c6c398717e73612dc3
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced9b0513905e0598b9f8cfccab8e47497aed5d935dFixed42b380f97d65e76e7b310facd525f730272daf57
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced335dfe4bc6368e70e8c15419375cf609c4f85558Fixed2ce8ece5a78da67834db7728edc801889a64f643
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introducede42efbe9754da78eafe11f6bd3ca9c8a094a752aFixed477469223b2b840f436ce204333de87cb17e5d93
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced0550069cc25f513ce1f109c88f7c1f01d63297dbFixed457965c13f0837a289c9164b842d0860133f6274
Linux / Kernel
Package
- Name
- Kernel