CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2026-23415

In the Linux kernel, the following vulnerability has been resolved: futex: Fix UaF between futex_key_to_node_opt() and vma_replace_policy() During futex_key_to_node_opt() execution, vma->vm_policy is read under speculative mmap lock and RCU. Concurrently, mbind() may call vma_replace_policy() which frees the old mempolicy immediately via kmem_cache_free(). This creates a race where __futex_key_to_node() dereferences a freed mempolicy pointer, causing a use-after-free read of mpol->mode. [ 151.412631] BUG: KASAN: slab-use-after-free in __futex_key_to_node (kernel/futex/core.c:349) [ 151.414046] Read of size 2 at addr ffff888001c49634 by task e/87 [ 151.415969] Call Trace: [ 151.416732] __asan_load2 (mm/kasan/generic.c:271) [ 151.416777] __futex_key_to_node (kernel/futex/core.c:349) [ 151.416822] get_futex_key (kernel/futex/core.c:374 kernel/futex/core.c:386 kernel/futex/core.c:593) Fix by adding rcu to __mpol_put().

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 6.1%

CVSS Severity

CVSS v3 Score 7.8

References

Products affected by CVE-2026-23415

Linux » Linux Kernel » Version: 6.16

cpe:2.3:o:linux:linux_kernel:6.16
Linux » Linux Kernel » Version: 6.16.1

cpe:2.3:o:linux:linux_kernel:6.16.1
Linux » Linux Kernel » Version: 6.16.10

cpe:2.3:o:linux:linux_kernel:6.16.10
Linux » Linux Kernel » Version: 6.16.11

cpe:2.3:o:linux:linux_kernel:6.16.11
Linux » Linux Kernel » Version: 6.16.12

cpe:2.3:o:linux:linux_kernel:6.16.12
Linux » Linux Kernel » Version: 6.16.2

cpe:2.3:o:linux:linux_kernel:6.16.2
Linux » Linux Kernel » Version: 6.16.3

cpe:2.3:o:linux:linux_kernel:6.16.3
Linux » Linux Kernel » Version: 6.16.4

cpe:2.3:o:linux:linux_kernel:6.16.4
Linux » Linux Kernel » Version: 6.16.5

cpe:2.3:o:linux:linux_kernel:6.16.5
Linux » Linux Kernel » Version: 6.16.6

cpe:2.3:o:linux:linux_kernel:6.16.6
Linux » Linux Kernel » Version: 6.16.7

cpe:2.3:o:linux:linux_kernel:6.16.7
Linux » Linux Kernel » Version: 6.16.8

cpe:2.3:o:linux:linux_kernel:6.16.8
Linux » Linux Kernel » Version: 6.16.9

cpe:2.3:o:linux:linux_kernel:6.16.9
Linux » Linux Kernel » Version: 6.17

cpe:2.3:o:linux:linux_kernel:6.17
Linux » Linux Kernel » Version: 6.17.1

cpe:2.3:o:linux:linux_kernel:6.17.1
Linux » Linux Kernel » Version: 6.17.10

cpe:2.3:o:linux:linux_kernel:6.17.10
Linux » Linux Kernel » Version: 6.17.11

cpe:2.3:o:linux:linux_kernel:6.17.11
Linux » Linux Kernel » Version: 6.17.12

cpe:2.3:o:linux:linux_kernel:6.17.12
Linux » Linux Kernel » Version: 6.17.13

cpe:2.3:o:linux:linux_kernel:6.17.13
Linux » Linux Kernel » Version: 6.17.2

cpe:2.3:o:linux:linux_kernel:6.17.2
Linux » Linux Kernel » Version: 6.17.3

cpe:2.3:o:linux:linux_kernel:6.17.3
Linux » Linux Kernel » Version: 6.17.4

cpe:2.3:o:linux:linux_kernel:6.17.4
Linux » Linux Kernel » Version: 6.17.5

cpe:2.3:o:linux:linux_kernel:6.17.5
Linux » Linux Kernel » Version: 6.17.6

cpe:2.3:o:linux:linux_kernel:6.17.6
Linux » Linux Kernel » Version: 6.17.7

cpe:2.3:o:linux:linux_kernel:6.17.7
Linux » Linux Kernel » Version: 6.17.8

cpe:2.3:o:linux:linux_kernel:6.17.8
Linux » Linux Kernel » Version: 6.17.9

cpe:2.3:o:linux:linux_kernel:6.17.9
Linux » Linux Kernel » Version: 6.18

cpe:2.3:o:linux:linux_kernel:6.18
Linux » Linux Kernel » Version: 6.18.1

cpe:2.3:o:linux:linux_kernel:6.18.1
Linux » Linux Kernel » Version: 6.18.10

cpe:2.3:o:linux:linux_kernel:6.18.10
Linux » Linux Kernel » Version: 6.18.11

cpe:2.3:o:linux:linux_kernel:6.18.11
Linux » Linux Kernel » Version: 6.18.13

cpe:2.3:o:linux:linux_kernel:6.18.13
Linux » Linux Kernel » Version: 6.18.14

cpe:2.3:o:linux:linux_kernel:6.18.14
Linux » Linux Kernel » Version: 6.18.2

cpe:2.3:o:linux:linux_kernel:6.18.2
Linux » Linux Kernel » Version: 6.18.3

cpe:2.3:o:linux:linux_kernel:6.18.3
Linux » Linux Kernel » Version: 6.18.4

cpe:2.3:o:linux:linux_kernel:6.18.4
Linux » Linux Kernel » Version: 6.18.5

cpe:2.3:o:linux:linux_kernel:6.18.5
Linux » Linux Kernel » Version: 6.18.6

cpe:2.3:o:linux:linux_kernel:6.18.6
Linux » Linux Kernel » Version: 6.18.7

cpe:2.3:o:linux:linux_kernel:6.18.7
Linux » Linux Kernel » Version: 6.18.8

cpe:2.3:o:linux:linux_kernel:6.18.8
Linux » Linux Kernel » Version: 6.18.9

cpe:2.3:o:linux:linux_kernel:6.18.9
Linux » Linux Kernel » Version: 6.19

cpe:2.3:o:linux:linux_kernel:6.19
Linux » Linux Kernel » Version: 6.19.1

cpe:2.3:o:linux:linux_kernel:6.19.1
Linux » Linux Kernel » Version: 6.19.3

cpe:2.3:o:linux:linux_kernel:6.19.3
Linux » Linux Kernel » Version: 6.19.4

cpe:2.3:o:linux:linux_kernel:6.19.4
Linux » Linux Kernel » Version: 7.0

cpe:2.3:o:linux:linux_kernel:7.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2026-23415

Products

Pricing

Contact Us