CVE-2026-23250Incorrect Check of Function Return Value in Linux

CWE-253Incorrect Check of Function Return Value8 documents7 sources
Severity
5.5MEDIUM
No vector
EPSS
0.0%
top 93.78%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
LinuxLinux Kernel
Timeline
PublishedMar 18

Description

In the Linux kernel, the following vulnerability has been resolved: xfs: check return value of xchk_scrub_create_subord Fix this function to return NULL instead of a mangled ENOMEM, then fix the callers to actually check for a null pointer and return ENOMEM. Most of the corrections here are for code merged between 6.2 and 6.10.

Affected Packages3 packages

Linuxlinux/linux_kernel6.10.06.12.75+2
Debianlinux/linux_kernel< 6.19.6-1
CVEListV5linux/linux1a5f6e08d4e379a23da5be974aee50b26a20c5b0d6f3f7d4dd8a179394cef03c00993d57f5f68601+4

🔴Vulnerability Details

4
OSV
xfs: check return value of xchk_scrub_create_subord2026-03-18
CVEList
xfs: check return value of xchk_scrub_create_subord2026-03-18
OSV
CVE-2026-23250: In the Linux kernel, the following vulnerability has been resolved: xfs: check return value of xchk_scrub_create_subord Fix this function to return NU2026-03-18
GHSA
GHSA-g9h3-f67f-jqj7: In the Linux kernel, the following vulnerability has been resolved: xfs: check return value of xchk_scrub_create_subord Fix this function to return2026-03-18

📋Vendor Advisories

2
Red Hat
kernel: xfs: check return value of xchk_scrub_create_subord2026-03-18
Debian
CVE-2026-23250: linux - In the Linux kernel, the following vulnerability has been resolved: xfs: check ...2026

🕵️Threat Intelligence

1
Wiz
CVE-2026-23250 Impact, Exploitability, and Mitigation Steps | Wiz
CVE-2026-23250 — Linux vulnerability | cvebase