CVE-2026-23433

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description The Linux kernel contains a flaw within the arm mpam component. Specifically, a null pointer dereference can occur when restoring bandwidth counters after an MSC supporting memory bandwidth monitoring is brought offline and then online. The mpam restore mbwu state() function calls ris msmon read() which can lead to a null pointer dereference if the value read, mbwu arg.val, is not properly initialized. This results in a kernel oops.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.