Use-After-Free in Linux Kernel FSL-MC Driver
CVE-2026-23221

Currently unrated

Key Information:

Vendor

Linux
Status
Linux
Vendor
CVE Published:
18 February 2026

What is CVE-2026-23221?

In the Linux kernel, a vulnerability has been identified in the FSL-MC driver that occurs due to improper synchronization around the driver_override string. The driver_override_show() function attempts to read the string without acquiring the necessary device_lock, while the driver_override_store() function modifies and frees this string under the protection of the device_lock. This can potentially lead to a concurrent use-after-free condition, posing risks for system stability and security. The vulnerability is mitigated by ensuring that the device_lock is held during the read operation, preventing any simultaneous access that could lead to exploitation.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

Linux 1f86a00c1159fd77e66b1bd6ff1a183f4d46f34d

Linux 1f86a00c1159fd77e66b1bd6ff1a183f4d46f34d

Linux 1f86a00c1159fd77e66b1bd6ff1a183f4d46f34d

References

https://git.kernel.org/stable/c/c71dfb7833db7af652ee8f650...
https://git.kernel.org/stable/c/c424e72cfa67e7e1477035058...
https://git.kernel.org/stable/c/b1983840287303e0dfb401b1b...

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.