Memory Leak Vulnerability in Linux Kernel SCSI Backend by Xen
CVE-2026-23087

Currently unrated

Key Information:

Vendor

Linux
Status
Linux
Vendor
CVE Published:
4 February 2026

What is CVE-2026-23087?

A memory leak has been identified in the SCSI backend driver for the Xen hypervisor within the Linux kernel. The issue arises from memory allocated for struct vscsiblk_info during the scsiback_probe() process not being properly released in the scsiback_remove() function. This can lead to accumulation of unused memory when devices are removed, potentially affecting system performance and stability. The flaw has been mitigated in subsequent updates by ensuring that allocated memory is correctly freed under all relevant conditions.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

Linux d9d660f6e562a47b4065eeb7e538910b0471b988

Linux d9d660f6e562a47b4065eeb7e538910b0471b988 < 427b0fb30ddec3bad05dcd73b00718f98c7026d2

Linux d9d660f6e562a47b4065eeb7e538910b0471b988 < 4a975c72429b050c234405668b742cdecc11548e

References

https://git.kernel.org/stable/c/a8bb3ec8d85951a56af0a72d9...
https://git.kernel.org/stable/c/427b0fb30ddec3bad05dcd73b...
https://git.kernel.org/stable/c/4a975c72429b050c234405668...

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.