CVE-2026-23263 — Linux vulnerability

8 documents7 sources

Severity

5.3MEDIUM

No vector

EPSS

0.0%

top 93.48%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Linux Linux Kernel

Timeline

PublishedMar 18

Description

In the Linux kernel, the following vulnerability has been resolved: io_uring/zcrx: fix page array leak d9f595b9a65e ("io_uring/zcrx: fix leaking pages on sg init fail") fixed a page leakage but didn't free the page array, release it as well.

Affected Packages3 packages

▶Linuxlinux/linux_kernel6.17.0 — 6.18.10

▶Debianlinux/linux_kernel< 6.18.10-1

▶CVEListV5linux/linuxb84621d96ee0221e0bfbf9f477bbec7a5077c464 — 64cf3016234ce8a6e4195ed1b2d9e2a1ae41b57d+2

🔴Vulnerability Details

CVEList

io_uring/zcrx: fix page array leak↗2026-03-18

▶

GHSA

GHSA-3qg9-j2gc-w8g9: In the Linux kernel, the following vulnerability has been resolved: io_uring/zcrx: fix page array leak d9f595b9a65e ("io_uring/zcrx: fix leaking pag↗2026-03-18

▶

OSV

CVE-2026-23263: In the Linux kernel, the following vulnerability has been resolved: io_uring/zcrx: fix page array leak d9f595b9a65e ("io_uring/zcrx: fix leaking pages↗2026-03-18

▶

OSV

io_uring/zcrx: fix page array leak↗2026-03-18

▶

📋Vendor Advisories

Red Hat

kernel: io_uring/zcrx: fix page array leak↗2026-03-18

▶

Debian

CVE-2026-23263: linux - In the Linux kernel, the following vulnerability has been resolved: io_uring/zc...↗2026

▶

🕵️Threat Intelligence

Wiz

CVE-2026-23263 Impact, Exploitability, and Mitigation Steps | Wiz↗

▶