CVE-2026-23361Time-of-check Time-of-use (TOCTOU) Race Condition in Linux

CWE-367Time-of-check Time-of-use (TOCTOU) Race Condition8 documents7 sources
Severity
5.5MEDIUM
No vector
EPSS
0.0%
top 93.81%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
4
LinuxLinux KernelDebian Linux+1 more
Timeline
PublishedMar 25

Description

In the Linux kernel, the following vulnerability has been resolved: PCI: dwc: ep: Flush MSI-X write before unmapping its ATU entry Endpoint drivers use dw_pcie_ep_raise_msix_irq() to raise an MSI-X interrupt to the host using a writel(), which generates a PCI posted write transaction. There's no completion for posted writes, so the writel() may return before the PCI write completes. dw_pcie_ep_raise_msix_irq() also unmaps the outbound ATU entry used for the PCI write, so the write races with t

Affected Packages5 packages

Linuxlinux/linux_kernel4.19.06.12.77+2
Debianlinux/linux_kernel< 6.19.8-1
CVEListV5linux/linuxbeb4641a787df79a1423a8789d185b6b78fcbfeaa7afb8f810c04845fdfc58c57d9cf0cc5f23ced0+4
debiandebian/linux< linux 6.19.8-1 (forky)

🔴Vulnerability Details

3
OSV
PCI: dwc: ep: Flush MSI-X write before unmapping its ATU entry2026-03-25
GHSA
GHSA-7vjw-7j3v-c8gx: In the Linux kernel, the following vulnerability has been resolved: PCI: dwc: ep: Flush MSI-X write before unmapping its ATU entry Endpoint drivers2026-03-25
OSV
CVE-2026-23361: In the Linux kernel, the following vulnerability has been resolved: PCI: dwc: ep: Flush MSI-X write before unmapping its ATU entry Endpoint drivers us2026-03-25

📋Vendor Advisories

3
Red Hat
kernel: PCI: dwc: ep: Flush MSI-X write before unmapping its ATU entry2026-03-25
Microsoft
PCI: dwc: ep: Flush MSI-X write before unmapping its ATU entry2026-03-10
Debian
CVE-2026-23361: linux - In the Linux kernel, the following vulnerability has been resolved: PCI: dwc: e...2026

🕵️Threat Intelligence

1
Wiz
CVE-2026-23361 Impact, Exploitability, and Mitigation Steps | Wiz