CVE-2026-23294

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A race condition exists within the Linux kernel's bpf subsystem, specifically concerning the devmap functionality on PREEMPT RT kernels. Concurrent access to the per-CPU xdp dev bulk queue (bq) by multiple preemptible tasks on the same CPU can lead to several issues, including double-free/use-after-free vulnerabilities on bq->q[], corruption of bq->count and bq->q[], a race condition during dev rx/xdp prog teardown, and issues with list del clearprev() on the flush node. This occurs because the original code incorrectly assumes atomic operation of bq enqueue() and dev flush() relying on local bh disable(), which does not disable preemption on PREEMPT RT, allowing concurrent access to the bq.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.