๐Ÿ” CVE Alert

CVE-2026-23169

HIGH 7.8

mptcp: fix race in mptcp_pm_nl_flush_addrs_doit()

CVSS Score
7.8
EPSS Score
0.0%
EPSS Percentile
1th

In the Linux kernel, the following vulnerability has been resolved: mptcp: fix race in mptcp_pm_nl_flush_addrs_doit() syzbot and Eulgyu Kim reported crashes in mptcp_pm_nl_get_local_id() and/or mptcp_pm_nl_is_backup() Root cause is list_splice_init() in mptcp_pm_nl_flush_addrs_doit() which is not RCU ready. list_splice_init_rcu() can not be called here while holding pernet->lock spinlock. Many thanks to Eulgyu Kim for providing a repro and testing our patches.

Vendor linux
Product linux
Ecosystems
Industries
Technology
Published Feb 14, 2026
Last Updated Apr 3, 2026
Stay Ahead of the Next One

Get instant alerts for linux linux

Be the first to know when new high vulnerabilities affecting linux linux are published โ€” delivered to Slack, Telegram or Discord.

Get Free Alerts โ†’ Free ยท No credit card ยท 60 sec setup

CVSS v3 Breakdown

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability

Affected Versions

Linux / Linux
141694df6573b49aa4143c92556544b4b0bbda72 < 338d40bab283da2639780ee3e458fb61f1567d8c 141694df6573b49aa4143c92556544b4b0bbda72 < 7896dbe990d56d5bb8097863b2645355633665eb 141694df6573b49aa4143c92556544b4b0bbda72 < 455e882192c9833f176f3fbbbb2f036b6c5bf555 141694df6573b49aa4143c92556544b4b0bbda72 < 51223bdd0f60b06cfc7f25885c4d4be917adba94 141694df6573b49aa4143c92556544b4b0bbda72 < 1f1b9523527df02685dde603f20ff6e603d8e4a1 141694df6573b49aa4143c92556544b4b0bbda72 < e2a9eeb69f7d4ca4cf4c70463af77664fdb6ab1d
Linux / Linux
5.11

References

NVD โ†— CVE.org โ†— EPSS Data โ†—
git.kernel.org: https://git.kernel.org/stable/c/338d40bab283da2639780ee3e458fb61f1567d8c git.kernel.org: https://git.kernel.org/stable/c/7896dbe990d56d5bb8097863b2645355633665eb git.kernel.org: https://git.kernel.org/stable/c/455e882192c9833f176f3fbbbb2f036b6c5bf555 git.kernel.org: https://git.kernel.org/stable/c/51223bdd0f60b06cfc7f25885c4d4be917adba94 git.kernel.org: https://git.kernel.org/stable/c/1f1b9523527df02685dde603f20ff6e603d8e4a1 git.kernel.org: https://git.kernel.org/stable/c/e2a9eeb69f7d4ca4cf4c70463af77664fdb6ab1d