CVE-2026-23063

EPSS -
Veröffentlicht 04.02.2026 16:07:45
Zuletzt bearbeitet 04.02.2026 17:16:16
Quelle 416baaa9-dc9f-4396-8d5f-8c081f
CVE-Watchlists
Login
Unerledigt
Login

In the Linux kernel, the following vulnerability has been resolved:

uacce: ensure safe queue release with state management

Directly calling `put_queue` carries risks since it cannot
guarantee that resources of `uacce_queue` have been fully released
beforehand. So adding a `stop_queue` operation for the
UACCE_CMD_PUT_Q command and leaving the `put_queue` operation to
the final resource release ensures safety.

Queue states are defined as follows:
- UACCE_Q_ZOMBIE: Initial state
- UACCE_Q_INIT: After opening `uacce`
- UACCE_Q_STARTED: After `start` is issued via `ioctl`

When executing `poweroff -f` in virt while accelerator are still
working, `uacce_fops_release` and `uacce_remove` may execute
concurrently. This can cause `uacce_put_queue` within
`uacce_fops_release` to access a NULL `ops` pointer. Therefore, add
state checks to prevent accessing freed pointers.

Betroffene Produkte Warnungen 0 Metriken 0 CWE 0 Referenzen 7

Verknüpft mit AI von unstrukturierten Daten zu bestehenden CPE der NVD

Diese Information steht angemeldeten Benutzern zur Verfügung.

Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).

HerstellerLinux

≫

Produkt Linux

Default Statusunaffected

Version < 43f233eb6e7b9d88536881a9bc43726d0e34800d

Version 015d239ac0142ad0e26567fd890ef8d171f13709

Status affected

Version < 47634d70073890c9c37e39ab4ff93d4b585b028a

Version 015d239ac0142ad0e26567fd890ef8d171f13709

Status affected

Version < 92e4f11e29b98ef424ff72d6371acac03e5d973c

Version 015d239ac0142ad0e26567fd890ef8d171f13709

Status affected

Version < 26c08dabe5475d99a13f353d8dd70e518de45663

Version 015d239ac0142ad0e26567fd890ef8d171f13709

Status affected

HerstellerLinux

≫

Produkt Linux

Default Statusaffected

Version 5.7

Status affected

Version < 5.7

Version 0

Status unaffected

Version <= 6.6.*

Version 6.6.122

Status unaffected

Version <= 6.12.*

Version 6.12.68

Status unaffected

Version <= 6.18.*

Version 6.18.8

Status unaffected

Version <= *

Version 6.19-rc7

Status unaffected

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

Es wurden noch keine Metriken (CVSS, EPSS) zu dieser CVE veröffentlicht.

Es wurden noch keine Informationen zu CWE veröffentlicht.

https://git.kernel.org/stable/c/43f233eb6e7b9d88536881a9bc43726d0e34800d

https://git.kernel.org/stable/c/47634d70073890c9c37e39ab4ff93d4b585b028a

https://git.kernel.org/stable/c/92e4f11e29b98ef424ff72d6371acac03e5d973c

https://git.kernel.org/stable/c/26c08dabe5475d99a13f353d8dd70e518de45663

https://nvd.nist.gov/vuln/detail/CVE-2026-23063

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2026-23063

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2026-23063

EUVD