CVE-2026-23045

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.19.0-rc2+

Description The Linux kernel contains an issue within the ena network driver related to a missing lock when updating devlink parameters. Specifically, a warning was observed during the call to devl param driverinit value set(). This can lead to an assertion failure. The issue occurs when handling device link parameters within the ena driver. The call trace indicates the problem originates from the devl assert locked function in net/devlink/core.c.

Recommendations Update to a version newer than 6.19.0-rc2+ to resolve this issue.