CVE-2026-23217

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A deadlock situation can occur in the Linux kernel related to tracing and System Call Interface (SBI) Extended Call (ECALL) functionality on RISC-V systems. Specifically, if functions within the sbi ecall.c file are traceable, triggering a snapshot of the ring buffer via sbi ecall can lead to a recursive loop of SBI ECALLs and snapshots, resulting in a deadlock. This is more easily triggered on RISC-V systems lacking the SSTC extension, as timer events in timer-riscv.c periodically issue SBI ECALLs. The issue arises when sbi ecall triggers a snapshot of the ringbuffer, which in turn raises an interrupt, leading to another call to sbi ecall and another snapshot, creating an endless loop. The sbi ecall function is the entry point for system calls.

Recommendations Exclude the functions in the sbi ecall.c file from tracing to prevent the potential deadlock. At the moment, there is no information about a newer version that contains a fix for this vulnerability.