CVE-2026-23356Improper Resource Locking in Linux

CWE-413Improper Resource Locking9 documents8 sources
Severity
6.3MEDIUM
No vector
EPSS
0.0%
top 90.88%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
LinuxLinux Kernel
Timeline
PublishedMar 25

Description

In the Linux kernel, the following vulnerability has been resolved: drbd: fix "LOGIC BUG" in drbd_al_begin_io_nonblock() Even though we check that we "should" be able to do lc_get_cumulative() while holding the device->al_lock spinlock, it may still fail, if some other code path decided to do lc_try_lock() with bad timing. If that happened, we logged "LOGIC BUG for enr=...", but still did not return an error. The rest of the code now assumed that this request has references for the relevant

Affected Packages3 packages

Linuxlinux/linux_kernel3.10.06.1.167+4
Debianlinux/linux_kernel< 6.19.8-1
CVEListV5linux/linux08a1ddab6df7d3c7b6341774cb1cf4b21b96a2147752569fc78e89794ce28946529850282233f99d+6

🔴Vulnerability Details

4
OSV
CVE-2026-23356: In the Linux kernel, the following vulnerability has been resolved: drbd: fix "LOGIC BUG" in drbd_al_begin_io_nonblock() Even though we check that we2026-03-25
OSV
drbd: fix "LOGIC BUG" in drbd_al_begin_io_nonblock()2026-03-25
GHSA
GHSA-rp6p-x9w7-2rqg: In the Linux kernel, the following vulnerability has been resolved: drbd: fix "LOGIC BUG" in drbd_al_begin_io_nonblock() Even though we check that w2026-03-25
CVEList
drbd: fix "LOGIC BUG" in drbd_al_begin_io_nonblock()2026-03-25

📋Vendor Advisories

3
Red Hat
kernel: drbd: fix "LOGIC BUG" in drbd_al_begin_io_nonblock()2026-03-25
Microsoft
drbd: fix "LOGIC BUG" in drbd_al_begin_io_nonblock()2026-03-10
Debian
CVE-2026-23356: linux - In the Linux kernel, the following vulnerability has been resolved: drbd: fix "...2026

🕵️Threat Intelligence

1
Wiz
CVE-2026-23356 Impact, Exploitability, and Mitigation Steps | Wiz
CVE-2026-23356 — Improper Resource Locking in Linux | cvebase