CVE-2026-23412Signal Handler Race Condition in Linux

CWE-364Signal Handler Race Condition7 documents6 sources
Severity
5.5MEDIUM
No vector
EPSS
0.0%
top 93.71%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
LinuxLinux KernelDebian Linux
Timeline
PublishedApr 2
Latest updateApr 3

Description

In the Linux kernel, the following vulnerability has been resolved: netfilter: bpf: defer hook memory release until rcu readers are done Yiming Qian reports UaF when concurrent process is dumping hooks via nfnetlink_hooks: BUG: KASAN: slab-use-after-free in nfnl_hook_dump_one.isra.0+0xe71/0x10f0 Read of size 8 at addr ffff888003edbf88 by task poc/79 Call Trace: nfnl_hook_dump_one.isra.0+0xe71/0x10f0 netlink_dump+0x554/0x12b0 nfnl_hook_get+0x176/0x230 [..] Defer release until after concurren

Affected Packages3 packages

Debianlinux/linux_kernel< 6.19.10-1
CVEListV5linux/linux84601d6ee68ae820dec97450934797046d62db4bd016c216bc75c45128160593a77b864a04dbe7c0+5
debiandebian/linux< linux 6.19.10-1 (forky)

🔴Vulnerability Details

3
OSV
CVE-2026-23412: (In the Linux kernel, the following vulnerability has been resolved: n2026-04-03
OSV
CVE-2026-23412: In the Linux kernel, the following vulnerability has been resolved: netfilter: bpf: defer hook memory release until rcu readers are done Yiming Qian r2026-04-02
GHSA
GHSA-4jr5-4pj9-2xj8: In the Linux kernel, the following vulnerability has been resolved: netfilter: bpf: defer hook memory release until rcu readers are done Yiming Qian2026-04-02

📋Vendor Advisories

2
Red Hat
kernel: netfilter: bpf: defer hook memory release until rcu readers are done2026-04-02
Debian
CVE-2026-23412: linux - In the Linux kernel, the following vulnerability has been resolved: netfilter: ...2026

🕵️Threat Intelligence

1
Wiz
CVE-2026-23412 Impact, Exploitability, and Mitigation Steps | Wiz