CVE-2026-23362Missing Initialization of Resource in Linux

CWE-909Missing Initialization of Resource7 documents6 sources
Severity
5.5MEDIUM
No vector
EPSS
0.0%
top 90.94%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
LinuxLinux KernelDebian Linux
Timeline
PublishedMar 25

Description

In the Linux kernel, the following vulnerability has been resolved: can: bcm: fix locking for bcm_op runtime updates Commit c2aba69d0c36 ("can: bcm: add locking for bcm_op runtime updates") added a locking for some variables that can be modified at runtime when updating the sending bcm_op with a new TX_SETUP command in bcm_tx_setup(). Usually the RX_SETUP only handles and filters incoming traffic with one exception: When the RX_RTR_FRAME flag is set a predefined CAN frame is sent when a speci

Affected Packages4 packages

Linuxlinux/linux_kernel6.2.06.6.130+4
Debianlinux/linux_kernel< 6.19.8-1
CVEListV5linux/linux2a437b86ac5a9893c902f30ef66815bf13587bf6800f26f11ae37b17f58e0001f28a47dd75c26557+10
debiandebian/linux< linux 6.19.8-1 (forky)

🔴Vulnerability Details

3
OSV
CVE-2026-23362: In the Linux kernel, the following vulnerability has been resolved: can: bcm: fix locking for bcm_op runtime updates Commit c2aba69d0c36 ("can: bcm: a2026-03-25
OSV
can: bcm: fix locking for bcm_op runtime updates2026-03-25
GHSA
GHSA-57pc-f5j8-25x4: In the Linux kernel, the following vulnerability has been resolved: can: bcm: fix locking for bcm_op runtime updates Commit c2aba69d0c36 ("can: bcm:2026-03-25

📋Vendor Advisories

2
Red Hat
kernel: can: bcm: fix locking for bcm_op runtime updates2026-03-25
Debian
CVE-2026-23362: linux - In the Linux kernel, the following vulnerability has been resolved: can: bcm: f...2026

🕵️Threat Intelligence

1
Wiz
CVE-2026-23362 Impact, Exploitability, and Mitigation Steps | Wiz