CVE-2026-23156

CWE-3908 documents8 sources
Severity
7.8HIGH
EPSS
0.0%
top 96.72%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Linux LinuxLinux Linux Kernel
Timeline
PublishedFeb 14
Latest updateApr 13

Description

In the Linux kernel, the following vulnerability has been resolved: efivarfs: fix error propagation in efivar_entry_get() efivar_entry_get() always returns success even if the underlying __efivar_entry_get() fails, masking errors. This may result in uninitialized heap memory being copied to userspace in the efivarfs_file_read() path. Fix it by returning the error from __efivar_entry_get().

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HExploitability: 1.8 | Impact: 5.9

Affected Packages3 packages

NVDlinux/linux_kernel6.06.1.162+4
CVEListV5linux/linux2d82e6227ea189c0589e7383a36616ac2a2d248c3960f1754664661a970dc9ebbab44ff93a0b4c42+5
Debianlinux< 6.1.162-1+2

Patches

Patch: git.kernel.orgPatch: git.kernel.orgPatch: git.kernel.org

🔴Vulnerability Details

4
VulDB
Linux Kernel up to 6.1.161/6.6.122/6.12.68/6.18.8 efivarfs efivar_entry_get uninitialized pointer (Nessus ID 299150 / WID-SEC-2026-0421)2026-04-13
OSV
CVE-2026-23156: In the Linux kernel, the following vulnerability has been resolved: efivarfs: fix error propagation in efivar_entry_get() efivar_entry_get() always re2026-02-14
CVEList
efivarfs: fix error propagation in efivar_entry_get()2026-02-14
GHSA
GHSA-r6pf-fx8p-436v: In the Linux kernel, the following vulnerability has been resolved: efivarfs: fix error propagation in efivar_entry_get() efivar_entry_get() always2026-02-14

📋Vendor Advisories

2
Red Hat
kernel: Linux kernel: Information disclosure in efivarfs via incorrect error propagation2026-02-14
Debian
CVE-2026-23156: linux - In the Linux kernel, the following vulnerability has been resolved: efivarfs: f...2026

🕵️Threat Intelligence

1
Wiz
CVE-2026-23156 Impact, Exploitability, and Mitigation Steps | Wiz
CVE-2026-23156 (HIGH CVSS 7.8) | In the Linux kernel | cvebase.io