CVE-2026-23251 | THREATINT

Description

In the Linux kernel, the following vulnerability has been resolved: xfs: only call xf{array,blob}_destroy if we have a valid pointer Only call the xfarray and xfblob destructor if we have a valid pointer, and be sure to null out that pointer afterwards. Note that this patch fixes a large number of commits, most of which were merged between 6.9 and 6.10.

PUBLISHED Reserved 2026-01-13 | Published 2026-03-18 | Updated 2026-04-13 | Assigner Linux

Product status

Default status

unaffected

ab97f4b1c030750f2475bf4da8a9554d02206640 (git) before 5de5be3ed7e7fa4ebde4f4b58fb9a629644f9202

affected

ab97f4b1c030750f2475bf4da8a9554d02206640 (git) before c9ccefacae0d8091683447bc338bd7741417039d

affected

ab97f4b1c030750f2475bf4da8a9554d02206640 (git) before d827612c81a26cc1dd83a211cfcb5ad8765da0c4

affected

ab97f4b1c030750f2475bf4da8a9554d02206640 (git) before ba408d299a3bb3c5309f40c5326e4fb83ead4247

affected

Default status

affected

6.10

affected

Any version before 6.10

unaffected

6.12.75 (semver)

unaffected

6.18.16 (semver)

unaffected

6.19.6 (semver)

unaffected

7.0 (original_commit_for_fix)

unaffected

References

git.kernel.org/...c/5de5be3ed7e7fa4ebde4f4b58fb9a629644f9202

git.kernel.org/...c/c9ccefacae0d8091683447bc338bd7741417039d

git.kernel.org/...c/d827612c81a26cc1dd83a211cfcb5ad8765da0c4

git.kernel.org/...c/ba408d299a3bb3c5309f40c5326e4fb83ead4247

cve.org (CVE-2026-23251)

nvd.nist.gov (CVE-2026-23251)

Download JSON

help @ threatint.eu