CVE-2026-23179

Linux Kernel 6.7-6.12.69, 6.13-6.18.9, 6.19 - Denial of Service via nvmet-tcp Listen Data Ready Deadlock

Title source: llm

Description

In the Linux kernel, the following vulnerability has been resolved: nvmet-tcp: fixup hang in nvmet_tcp_listen_data_ready() When the socket is closed while in TCP_LISTEN a callback is run to flush all outstanding packets, which in turns calls nvmet_tcp_listen_data_ready() with the sk_callback_lock held. So we need to check if we are in TCP_LISTEN before attempting to get the sk_callback_lock() to avoid a deadlock.

References (3)

Core 3

Core References

Patch

https://git.kernel.org/stable/c/6e0c7503a5803d568d56a9f9bca662cd94a14908

Patch

https://git.kernel.org/stable/c/1c90f930e7b410dd2d75a2a19a85e19c64e98ad5

Patch

https://git.kernel.org/stable/c/2fa8961d3a6a1c2395d8d560ffed2c782681bade

Scores

EPSS 0.0003

EPSS Percentile 7.3%

Details

Status published

Products (10)

linux/Kernel 6.13.0 - 6.18.10linux

linux/Kernel 6.7.0 - 6.12.70linux

Linux/Linux < 6.7

Linux/Linux 6.12.70 - 6.12.*

Linux/Linux 6.18.10 - 6.18.*

Linux/Linux 6.19

Linux/Linux 6.7

Linux/Linux 675b453e024154dd547921c6e6d5b58747ba7e0e - 1c90f930e7b410dd2d75a2a19a85e19c64e98ad5

Linux/Linux 675b453e024154dd547921c6e6d5b58747ba7e0e - 2fa8961d3a6a1c2395d8d560ffed2c782681bade

Linux/Linux 675b453e024154dd547921c6e6d5b58747ba7e0e - 6e0c7503a5803d568d56a9f9bca662cd94a14908

Published Feb 14, 2026

Tracked Since Feb 18, 2026