Linux · Linux Kernel · CVE-2026-23251
**Name of the Vulnerable Software and Affected Versions**
Linux kernel versions 6.9 through 6.10
**Description**
The Linux kernel contains a flaw where the `xfarray` and `xfblob` destructors are called with an invalid pointer. This occurs when a valid pointer is not present, potentially leading to system instability or unexpected behavior. The issue was addressed by ensuring the destructors are only invoked when a valid pointer exists, and by nullifying the pointer afterward. This correction impacts numerous commits merged between kernel versions 6.9 and 6.10.
**Recommendations**
Update to a version beyond 6.10.