CVE-2026-23259

UNKNOWN 0.0

io_uring/rw: free potentially allocated iovec on cache put failure

CVSS Score

0.0

EPSS Score

0.0%

EPSS Percentile

0th

In the Linux kernel, the following vulnerability has been resolved: io_uring/rw: free potentially allocated iovec on cache put failure If a read/write request goes through io_req_rw_cleanup() and has an allocated iovec attached and fails to put to the rw_cache, then it may end up with an unaccounted iovec pointer. Have io_rw_recycle() return whether it recycled the request or not, and use that to gauge whether to free a potential iovec or not.

Vendor	linux
Product	linux
Ecosystems	Linux Kernel
Industries	Technology
Published	Mar 18, 2026
Last Updated	Mar 19, 2026

Stay Ahead of the Next One

Get instant alerts for linux linux

Be the first to know when new unknown vulnerabilities affecting linux linux are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

Affected Versions

Linux / Linux

a9165b83c1937eeed1f0c731468216d6371d647f < 1d5f2329ab4df65c2ee011b986d8a6e05ad0f67c a9165b83c1937eeed1f0c731468216d6371d647f < 4b9748055457ac3a0710bf210c229d01ea1b01b9

Linux / Linux

6.10

References

NVD ↗ CVE.org ↗ EPSS Data ↗

git.kernel.org: https://git.kernel.org/stable/c/1d5f2329ab4df65c2ee011b986d8a6e05ad0f67c git.kernel.org: https://git.kernel.org/stable/c/4b9748055457ac3a0710bf210c229d01ea1b01b9