Linux Kernel Vulnerability in Netfilter Related to Timer Labels
CVE-2026-23274

Currently unrated

Key Information:

Vendor

Linux
Status
Linux
Vendor
CVE Published:
20 March 2026

What is CVE-2026-23274?

A vulnerability in the Linux kernel's Netfilter module involves the improper reuse of ALARM timer labels in revision 0 rules. This issue arises when timers created using revision 0 attempt to reuse existing timers labeled from revision 1. If an alarm timer semantics is involved, the system may call mod_timer() on an uninitialized timer_list, which can lead to debug object warnings and potential system crashes, especially when specific panic settings are enabled. A fix has been implemented to prevent the insertion of revision 0 rules when an ALARM type timer with the same label already exists, ensuring enhanced stability and security.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

Linux 68983a354a655c35d3fb204489d383a2a051fda7

Linux 68983a354a655c35d3fb204489d383a2a051fda7

Linux 68983a354a655c35d3fb204489d383a2a051fda7 < 329f0b9b48ee6ab59d1ab72fef55fe8c6463a6cf

References

https://git.kernel.org/stable/c/f5ef97c13165542480a6ffdbe...
https://git.kernel.org/stable/c/f228b9ae2a7e84d1153616d8e...
https://git.kernel.org/stable/c/329f0b9b48ee6ab59d1ab72fe...

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.