DEBIAN-CVE-2026-23326
- Source
- https://security-tracker.debian.org/tracker/CVE-2026-23326
- Import Source
- https://storage.googleapis.com/debian-osv/debian-cve-osv/DEBIAN-CVE-2026-23326.json
- JSON Data
- https://api.osv.dev/v1/vulns/DEBIAN-CVE-2026-23326
- Upstream
- Published
- 2026-03-25T11:16:29.687Z
- Modified
- 2026-03-26T07:48:29.525659Z
- Summary
- [none]
- Details
-
In the Linux kernel, the following vulnerability has been resolved: xsk: Fix fragment node deletion to prevent buffer leak After commit b692bf9a7543 ("xsk: Get rid of xdpbuffxsk::xskblistnode"), the listnode field is reused for both the xskb pool list and the buffer free list, this causes a buffer leak as described below. xpfree() checks if a buffer is already on the free list using listempty(&xskb->listnode). When listdel() is used to remove a node from the xskb pool list, it doesn't reinitialize the node pointers. This means listempty() will return false even after the node has been removed, causing xpfree() to incorrectly skip adding the buffer to the free list. Fix this by using listdelinit() instead of listdel() in all fragment handling paths, this ensures the list node is reinitialized after removal, allowing the list_empty() to work correctly.
- References
Affected packages
Debian:14 / linux
Package
- Name
- linux
- Purl
- pkg:deb/debian/linux?arch=source
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed6.19.8-1