Security Advisory

CVE-2023-52926

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-02-24 09:01:19
Last updated 2026-05-11 19:35:51
Assigner Linux
State PUBLISHED

Description

In the Linux kernel, the following vulnerability has been resolved: IORING_OP_READ did not correctly consume the provided buffer list when read i/o returned < 0 (except for -EAGAIN and -EIOCBQUEUED return). This can lead to a potential use-after-free when the completion via io_rw_done runs at separate context.