CVE-2026-23388
Published: Mar 25, 2026
Modified: May 11, 2026
Description
In the Linux kernel, the following vulnerability has been resolved: Squashfs: check metadata block offset is within range Syzkaller reports a "general protection fault in squashfs_copy_data" This is ultimately caused by a corrupted index look-up table, which produces a negative metadata block offset. This is subsequently passed to squashfs_copy_data (via squashfs_read_metadata) where the negative offset causes an out of bounds access. The fix is to check that the offset is within range in squashfs_read_metadata. This will trap this and other cases.
| Vendor | Product | Versions |
|---|---|---|
Linux | Linux | affected f400e12656ab518be107febfe2315fb1eab5a342 - < 60f679f643f3f36a8571ea585e4ce5d93ef952b5affected f400e12656ab518be107febfe2315fb1eab5a342 - < 3f68a9457a6190814377577374da75f872e0a013affected f400e12656ab518be107febfe2315fb1eab5a342 - < 0c8ab092aec3ac4294940054772d30b511b16713affected f400e12656ab518be107febfe2315fb1eab5a342 - < 6b847d65f5b0065e02080c61fad93d57d6686383affected f400e12656ab518be107febfe2315fb1eab5a342 - < 9e9fa5ad37c9cbad73c165c7ff1e76e650825e7c+3 more versions |
Linux | Linux | affected 2.6.29unaffected 0 - < 2.6.29unaffected 5.10.253 - <= 5.10.*unaffected 5.15.203 - <= 5.15.*unaffected 6.1.167 - <= 6.1.*+5 more versions |
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now