CVE-2026-23094

MEDIUM

Linux Kernel - Denial of Service via uacce Sysfs Isolation Callback Handling

Title source: llm

Description

In the Linux kernel, the following vulnerability has been resolved: uacce: fix isolate sysfs check condition uacce supports the device isolation feature. If the driver implements the isolate_err_threshold_read and isolate_err_threshold_write callback functions, uacce will create sysfs files now. Users can read and configure the isolation policy through sysfs. Currently, sysfs files are created as long as either isolate_err_threshold_read or isolate_err_threshold_write callback functions are present. However, accessing a non-existent callback function may cause the system to crash. Therefore, intercept the creation of sysfs if neither read nor write exists; create sysfs if either is supported, but intercept unsupported operations at the call site.

References (4)

Core 4

Core References

Patch

https://git.kernel.org/stable/c/9ab05cdcac354b1b1139918f49c6418b9005d042

Patch

https://git.kernel.org/stable/c/fdbbb47d15ae17bf39fafec7e2028c1f8efba15e

Patch

https://git.kernel.org/stable/c/82821a681d5dcce31475a65190fc39ea8f372cc0

Patch

https://git.kernel.org/stable/c/98eec349259b1fd876f350b1c600403bcef8f85d

Scores

CVSS v3 5.5

EPSS 0.0002

EPSS Percentile 4.5%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Details

Status published

Products (15)

linux/Kernel 6.13.0 - 6.18.8linux

linux/Kernel 6.3.0 - 6.6.122linux

linux/Kernel 6.7.0 - 6.12.68linux

Linux/Linux < 6.3

Linux/Linux 6.12.68 - 6.12.*

Linux/Linux 6.18.8 - 6.18.*

Linux/Linux 6.19

Linux/Linux 6.3

Linux/Linux 6.6.122 - 6.6.*

Linux/Linux e3e289fbc0b520cf469469e8cdba84a50424eb65 - 82821a681d5dcce31475a65190fc39ea8f372cc0

... and 5 more

Published Feb 04, 2026

Tracked Since Feb 18, 2026