CVE-2026-23437

Published: Apr 3, 2026

Modified: May 11, 2026

PUBLISHED

CVSS v3.1

7.8

HIGH

Description

In the Linux kernel, the following vulnerability has been resolved: net: shaper: protect late read accesses to the hierarchy We look up a netdev during prep of Netlink ops (pre- callbacks) and take a ref to it. Then later in the body of the callback we take its lock or RCU which are the actual protections. This is not proper, a conversion from a ref to a locked netdev must include a liveness check (a check if the netdev hasn't been unregistered already). Fix the read cases (those under RCU). Writes needs a separate change to protect from creating the hierarchy after flush has already run.

Vendor	Product	Versions
Linux	Linux	affected `4b623f9f0f59652ea71fcb27d60b4c3b65126dbb - < 581eee0890a8bde44f1fb78ad3e70502a897d583` affected `4b623f9f0f59652ea71fcb27d60b4c3b65126dbb - < 348758ba74e6a348299965b16a97cfb817545cc0` affected `4b623f9f0f59652ea71fcb27d60b4c3b65126dbb - < 0f9ea7141f365b4f27226898e62220fb98ef8dc6`
Linux	Linux	affected `6.13` unaffected `0 - < 6.13` unaffected `6.18.20 - <= 6.18.` unaffected `6.19.10 - <= 6.19.` unaffected `7.0 - <= *`

CVSS v3.1 Details

CVSS v3.1 Vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Attack Vector

Local

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

High

References

https://git.kernel.org/stable/c/581eee0890a8bde44f1fb78ad3e70502a897d583

https://git.kernel.org/stable/c/348758ba74e6a348299965b16a97cfb817545cc0

https://git.kernel.org/stable/c/0f9ea7141f365b4f27226898e62220fb98ef8dc6

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2026-23437

Description

Affected Products

CVSS v3.1 Details

References