CVE-2026-23368

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description The Linux kernel contains a flaw related to a potential AB-BA deadlock when both LEDS TRIGGER NETDEV and LED TRIGGER PHY are enabled. The issue occurs during the registration of PHY LED triggers, where the code attempts to acquire locks in an order that can lead to a deadlock situation. Specifically, the phy led triggers register function is called while holding the RTNL lock, and then attempts to acquire the triggers list lock. Simultaneously, LEDS TRIGGER NETDEV enables on an LED, first taking triggers list lock and then RTNL, creating the AB-BA deadlock. The fix involves moving the call to phy led triggers registers() to a location where it does not require the RTNL, resolving the deadlock.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.