CVE-2026-23168
Severity
5.5MEDIUM
EPSS
0.0%
top 96.92%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
Timeline
PublishedFeb 14
Latest updateApr 13
Description
In the Linux kernel, the following vulnerability has been resolved:
flex_proportions: make fprop_new_period() hardirq safe
Bernd has reported a lockdep splat from flexible proportions code that is
essentially complaining about the following race:
run_timer_softirq - we are in softirq context
call_timer_fn
writeout_period
fprop_new_period
write_seqcount_begin(&p->sequence);
...
blk_mq_end_request()
blk_update_request()
ext4_end_bio()
folio_end_writeback()
__wb_writeout_add()
__fprop_add_per…
CVSS vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:HExploitability: 1.8 | Impact: 3.6
Affected Packages3 packages
▶CVEListV5linux/linuxa91befde350375b1ff954635acdde14dc92cd9a8 — 0acc9ba7a1b5ba4d998c5753e709be904e179b75+5
Patches
🔴Vulnerability Details
4VulDB▶
Linux Kernel up to 6.1.161/6.6.122/6.12.68/6.18.8 flex_proportions fprop_new_period deadlock (Nessus ID 299167 / WID-SEC-2026-0421)↗2026-04-13
OSV▶
CVE-2026-23168: In the Linux kernel, the following vulnerability has been resolved: flex_proportions: make fprop_new_period() hardirq safe Bernd has reported a lockde↗2026-02-14
GHSA▶
GHSA-7xmm-c998-f7c9: In the Linux kernel, the following vulnerability has been resolved:
flex_proportions: make fprop_new_period() hardirq safe
Bernd has reported a lock↗2026-02-14