CVE-2026-23344
- Source
- https://cve.org/CVERecord?id=CVE-2026-23344
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-23344.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2026-23344
- Downstream
- Published
- 2026-03-25T10:27:31.795Z
- Modified
- 2026-04-02T13:12:22.288054Z
- Summary
- crypto: ccp - Fix use-after-free on error path
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
crypto: ccp - Fix use-after-free on error path
In the error path of sevtsminitlocked(), the code dereferences 't' after it has been freed with kfree(). The prerr() statement attempts to access t->tioen and t->tioinit_done after the memory has been released.
Move the pr_err() call before kfree(t) to access the fields while the memory is still valid.
This issue reported by Smatch static analyser
- Database specific
{ "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/23xxx/CVE-2026-23344.json", "cna_assigner": "Linux" }- References
-
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- https://git.kernel.org/stable/c/79a26fe3175b9ed7c0c9541b197cb9786237c0f7
- https://git.kernel.org/stable/c/889b0e2721e793eb46cf7d17b965aa3252af3ec8
- https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/23xxx/CVE-2026-23344.json
- https://nvd.nist.gov/vuln/detail/CVE-2026-23344