CVE-2026-23249NULL Pointer Dereference in Linux

CWE-476NULL Pointer Dereference8 documents7 sources
Severity
5.5MEDIUM
No vector
EPSS
0.0%
top 93.78%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
LinuxLinux Kernel
Timeline
PublishedMar 18

Description

In the Linux kernel, the following vulnerability has been resolved: xfs: check for deleted cursors when revalidating two btrees The free space and inode btree repair functions will rebuild both btrees at the same time, after which it needs to evaluate both btrees to confirm that the corruptions are gone. However, Jiaming Zhang ran syzbot and produced a crash in the second xchk_allocbt call. His root-cause analysis is as follows (with minor corrections): In xrep_revalidate_allocbt(), xchk_all

Affected Packages3 packages

Linuxlinux/linux_kernel6.8.06.12.75+2
Debianlinux/linux_kernel< 6.19.6-1
CVEListV5linux/linuxdbfbf3bdf639a20da7d5fb390cd2e197d25aa418d69de525bc7ab27713342080bf50826df3f6a68f+4

🔴Vulnerability Details

4
OSV
xfs: check for deleted cursors when revalidating two btrees2026-03-18
GHSA
GHSA-w9wm-69p8-g28q: In the Linux kernel, the following vulnerability has been resolved: xfs: check for deleted cursors when revalidating two btrees The free space and i2026-03-18
CVEList
xfs: check for deleted cursors when revalidating two btrees2026-03-18
OSV
CVE-2026-23249: In the Linux kernel, the following vulnerability has been resolved: xfs: check for deleted cursors when revalidating two btrees The free space and ino2026-03-18

📋Vendor Advisories

2
Red Hat
kernel: xfs: check for deleted cursors when revalidating two btrees2026-03-18
Debian
CVE-2026-23249: linux - In the Linux kernel, the following vulnerability has been resolved: xfs: check ...2026

🕵️Threat Intelligence

1
Wiz
CVE-2026-23249 Impact, Exploitability, and Mitigation Steps | Wiz
CVE-2026-23249 — NULL Pointer Dereference in Linux | cvebase