CVE-2026-23087

See a problem?
Please try reporting it to the source first.
Source
https://cve.org/CVERecord?id=CVE-2026-23087
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-23087.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2026-23087
Downstream
Published
2026-02-04T16:08:10.941Z
Modified
2026-04-02T13:12:00.306525Z
Summary
scsi: xen: scsiback: Fix potential memory leak in scsiback_remove()
Details

In the Linux kernel, the following vulnerability has been resolved:

scsi: xen: scsiback: Fix potential memory leak in scsiback_remove()

Memory allocated for struct vscsiblkinfo in scsibackprobe() is not freed in scsibackremove() leading to potential memory leaks on remove, as well as in the scsibackprobe() error paths. Fix that by freeing it in scsiback_remove().

Database specific 
{
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/23xxx/CVE-2026-23087.json",
    "cna_assigner": "Linux"
}
References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
d9d660f6e562a47b4065eeb7e538910b0471b988
Fixed
a8bb3ec8d85951a56af0a72d93ccbc2aee42eef9
Fixed
427b0fb30ddec3bad05dcd73b00718f98c7026d2
Fixed
4a975c72429b050c234405668b742cdecc11548e
Fixed
f86264ec0e2b102fcd49bf3e4f32fee669d482fc
Fixed
32e52b56056daf0f0881fd9254706acf25b4be97
Fixed
24c441f0e24da175d7912095663f526ac480dc4f
Fixed
901a5f309daba412e2a30364d7ec1492fa11c32c

Database specific

source 
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-23087.json"