CVE-2026-23223

CWE-416 — Use After Free CWE-3668 documents8 sources

Severity

7.8HIGH

EPSS

0.0%

top 96.72%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Linux Linux Linux Linux Kernel

Timeline

PublishedFeb 18

Description

In the Linux kernel, the following vulnerability has been resolved: xfs: fix UAF in xchk_btree_check_block_owner We cannot dereference bs->cur when trying to determine if bs->cur aliases bs->sc->sa.{bno,rmap}_cur after the latter has been freed. Fix this by sampling before type before any freeing could happen. The correct temporal ordering was broken when we removed xfs_btnum_t.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HExploitability: 1.8 | Impact: 5.9

Affected Packages3 packages

▶NVDlinux/linux_kernel6.9 — 6.12.72+2

▶CVEListV5linux/linuxec793e690f801d97a7ae2a0d429fea1fee4d44aa — 1d411278dda293a507cb794db7d9ed3511c685c6+4

▶Debianlinux< 6.12.73-1+1

Patches

Patch: git.kernel.org ↗Patch: git.kernel.org ↗Patch: git.kernel.org ↗

🔴Vulnerability Details

OSV

CVE-2026-23223: In the Linux kernel, the following vulnerability has been resolved: xfs: fix UAF in xchk_btree_check_block_owner We cannot dereference bs->cur when tr↗2026-02-18

▶

CVEList

xfs: fix UAF in xchk_btree_check_block_owner↗2026-02-18

▶

GHSA

GHSA-h437-rr98-fx56: In the Linux kernel, the following vulnerability has been resolved: xfs: fix UAF in xchk_btree_check_block_owner We cannot dereference bs->cur when↗2026-02-18

▶

📋Vendor Advisories

Red Hat

kernel: xfs: fix UAF in xchk_btree_check_block_owner↗2026-02-18

▶

Microsoft

xfs: fix UAF in xchk_btree_check_block_owner↗2026-02-10

▶

Debian

CVE-2026-23223: linux - In the Linux kernel, the following vulnerability has been resolved: xfs: fix UA...↗2026

▶

🕵️Threat Intelligence

Wiz

CVE-2026-23223 Impact, Exploitability, and Mitigation Steps | Wiz↗

▶