CVE-2026-23221
Published: Feb 18, 2026
Modified: May 11, 2026
Description
In the Linux kernel, the following vulnerability has been resolved: bus: fsl-mc: fix use-after-free in driver_override_show() The driver_override_show() function reads the driver_override string without holding the device_lock. However, driver_override_store() uses driver_set_override(), which modifies and frees the string while holding the device_lock. This can result in a concurrent use-after-free if the string is freed by the store function while being read by the show function. Fix this by holding the device_lock around the read operation.
| Vendor | Product | Versions |
|---|---|---|
Linux | Linux | affected 1f86a00c1159fd77e66b1bd6ff1a183f4d46f34d - < c71dfb7833db7af652ee8f65011f14c97c47405daffected 1f86a00c1159fd77e66b1bd6ff1a183f4d46f34d - < c424e72cfa67e7e1477035058a8a659f2c0ea637affected 1f86a00c1159fd77e66b1bd6ff1a183f4d46f34d - < b1983840287303e0dfb401b1b6cecc5ea7471e90affected 1f86a00c1159fd77e66b1bd6ff1a183f4d46f34d - < dd8ba8c0c3f3916d4ee1e3a09da9cd5caff5d227affected 1f86a00c1159fd77e66b1bd6ff1a183f4d46f34d - < 1d6bd6183e723a7b256ff34bbb5b498b5f4f2ec0+2 more versions |
Linux | Linux | affected 5.10unaffected 0 - < 5.10unaffected 5.15.201 - <= 5.15.*unaffected 6.1.164 - <= 6.1.*unaffected 6.6.127 - <= 6.6.*+4 more versions |
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now