CVE-2026-23106

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A flaw exists in the Linux kernel's timekeeping functionality. Specifically, an incorrect reference within the do ajdtimex() function, introduced to handle adjtimex for any timekeeper, leads to the core timekeeper being updated incorrectly when called on an auxiliary timekeeper. This results in a sequence lock being written to without holding its associated spinlock, triggering lock debugging diagnostics. The issue is related to the auxiliary clock adjustment function aux clock adj() and the system call do sys clock adjtime().

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.