CVE-2026-23251

Summary

In the Linux kernel, the following vulnerability has been resolved:

xfs: only call xf{array,blob}_destroy if we have a valid pointer

Only call the xfarray and xfblob destructor if we have a valid pointer, and be sure to null out that pointer afterwards. Note that this patch fixes a large number of commits, most of which were merged between 6.9 and 6.10.

Affected Software

VendorProductVersion RangeStatus
LinuxLinuxab97f4b1c030750f2475bf4da8a9554d02206640 < 5de5be3ed7e7fa4ebde4f4b58fb9a629644f9202affected
LinuxLinuxab97f4b1c030750f2475bf4da8a9554d02206640 < c9ccefacae0d8091683447bc338bd7741417039daffected
LinuxLinuxab97f4b1c030750f2475bf4da8a9554d02206640 < d827612c81a26cc1dd83a211cfcb5ad8765da0c4affected
LinuxLinuxab97f4b1c030750f2475bf4da8a9554d02206640 < ba408d299a3bb3c5309f40c5326e4fb83ead4247affected
LinuxLinux6.10affected
LinuxLinux0 < 6.10unaffected
LinuxLinux6.12.75 <= 6.12.*unaffected
LinuxLinux6.18.16 <= 6.18.*unaffected
LinuxLinux6.19.6 <= 6.19.*unaffected
LinuxLinux7.0 <= *unaffected

Weaknesses

References