Use After Free Vulnerability in Linux Kernel's XFS Filesystem
CVE-2026-23223

Currently unrated

Key Information:

Vendor

Linux
Status
Linux
Vendor
CVE Published:
18 February 2026

What is CVE-2026-23223?

A use after free vulnerability exists in the XFS filesystem of the Linux kernel that leads to a potential mishandling of memory references. Specifically, the issue arises in the xchk_btree_check_block_owner function where the dereferencing of 'bs->cur' can occur after the associated structures have been freed. This flaw can be exploited due to improper temporal ordering following the removal of the 'xfs_btnum_t', posing risks to system stability and security. A fix has been implemented to ensure that sampling occurs before any freeing of objects, thereby preventing this vulnerability from being exploited.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

Linux ec793e690f801d97a7ae2a0d429fea1fee4d44aa < 1d411278dda293a507cb794db7d9ed3511c685c6

Linux ec793e690f801d97a7ae2a0d429fea1fee4d44aa

Linux ec793e690f801d97a7ae2a0d429fea1fee4d44aa

References

https://git.kernel.org/stable/c/1d411278dda293a507cb794db...
https://git.kernel.org/stable/c/ed82e7949f5cac3058f4100f3...
https://git.kernel.org/stable/c/ba5264610423d9653aa369205...

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.