CVE-2026-23235

🗓️ 04 Mar 2026 14:36:39Reported by LinuxType

cve🔗 web.nvd.nist.gov👁 16 Views🌐 WEB

This fixes out-of-bounds access in f2fs sysfs attributes by tracking integer sizes.

Reporter	Title	Published	Views	Family All 58
ATTACKERKB	CVE-2026-23235	4 Mar 202614:36	–	attackerkb
Circl	CVE-2026-23235	4 Mar 202616:21	–	circl
CNNVD	Linux kernel 安全漏洞	4 Mar 202600:00	–	cnnvd
Cvelist	CVE-2026-23235 f2fs: fix out-of-bounds access in sysfs attribute read/write	4 Mar 202614:36	–	cvelist
Debian	[SECURITY] [DLA 4498-1] linux security update	13 Mar 202613:13	–	debian
Debian	[SECURITY] [DLA 4499-1] linux-6.1 security update	13 Mar 202613:14	–	debian
Debian	[SECURITY] [DSA 6162-1] linux security update	12 Mar 202621:41	–	debian
Debian	[SECURITY] [DSA 6163-1] linux security update	12 Mar 202621:31	–	debian
Debian CVE	CVE-2026-23235	4 Mar 202614:36	–	debiancve
Tenable Nessus	Debian dla-4498 : ata-modules-5.10.0-38-armmp-di - security update	13 Mar 202600:00	–	nessus

NVD

Vulners

CNA

Node

linux linux_kernelRange3.12–5.10.251

linux linux_kernelRange5.11–5.15.201

linux linux_kernelRange5.16–6.1.164

linux linux_kernelRange6.2–6.6.127

linux linux_kernelRange6.7–6.12.74

linux linux_kernelRange6.13–6.18.13

linux linux_kernelRange6.19–6.19.3

[
  {
    "product": "Linux",
    "vendor": "Linux",
    "defaultStatus": "unaffected",
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "programFiles": [
      "fs/f2fs/sysfs.c"
    ],
    "versions": [
      {
        "version": "b59d0bae6ca30c496f298881616258f9cde0d9c6",
        "lessThan": "e85a99db9ab85dfc30d93b0ca0e9156f3127f55a",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "b59d0bae6ca30c496f298881616258f9cde0d9c6",
        "lessThan": "438a405fbad6882df0e34b3e1a16839a71f04240",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "b59d0bae6ca30c496f298881616258f9cde0d9c6",
        "lessThan": "6a6c07a9b49e43f0df42d7118fc76aa555c73d98",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "b59d0bae6ca30c496f298881616258f9cde0d9c6",
        "lessThan": "eebd72cff518ac87e660aefb8a41224bd88c32ce",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "b59d0bae6ca30c496f298881616258f9cde0d9c6",
        "lessThan": "4ef30b9f1641c9e877792df6b049f1cf507d002d",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "b59d0bae6ca30c496f298881616258f9cde0d9c6",
        "lessThan": "d4a594dd952df123cbdcdee9b9640d9d55e4a954",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "b59d0bae6ca30c496f298881616258f9cde0d9c6",
        "lessThan": "3a905e183c047577b154f08a78ac3039e9454703",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "b59d0bae6ca30c496f298881616258f9cde0d9c6",
        "lessThan": "98ea0039dbfdd00e5cc1b9a8afa40434476c0955",
        "status": "affected",
        "versionType": "git"
      }
    ]
  },
  {
    "product": "Linux",
    "vendor": "Linux",
    "defaultStatus": "affected",
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "programFiles": [
      "fs/f2fs/sysfs.c"
    ],
    "versions": [
      {
        "version": "3.12",
        "status": "affected"
      },
      {
        "version": "0",
        "lessThan": "3.12",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "5.10.251",
        "lessThanOrEqual": "5.10.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "5.15.201",
        "lessThanOrEqual": "5.15.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "6.1.164",
        "lessThanOrEqual": "6.1.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "6.6.127",
        "lessThanOrEqual": "6.6.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "6.12.74",
        "lessThanOrEqual": "6.12.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "6.18.13",
        "lessThanOrEqual": "6.18.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "6.19.3",
        "lessThanOrEqual": "6.19.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "7.0",
        "lessThanOrEqual": "*",
        "status": "unaffected",
        "versionType": "original_commit_for_fix"
      }
    ]
  }
]

Source	Link
git	www.git.kernel.org/stable/c/4ef30b9f1641c9e877792df6b049f1cf507d002d
git	www.git.kernel.org/stable/c/6a6c07a9b49e43f0df42d7118fc76aa555c73d98
git	www.git.kernel.org/stable/c/d4a594dd952df123cbdcdee9b9640d9d55e4a954
git	www.git.kernel.org/stable/c/e85a99db9ab85dfc30d93b0ca0e9156f3127f55a
git	www.git.kernel.org/stable/c/438a405fbad6882df0e34b3e1a16839a71f04240
git	www.git.kernel.org/stable/c/98ea0039dbfdd00e5cc1b9a8afa40434476c0955
git	www.git.kernel.org/stable/c/3a905e183c047577b154f08a78ac3039e9454703
git	www.git.kernel.org/stable/c/eebd72cff518ac87e660aefb8a41224bd88c32ce

Parameter	Position	Path	Description	CWE
carve_out	path	/sys/fs/f2fs/vde/carve_out	Out-of-bounds read/write in sysfs attribute carve_out (8-bit) leading to memory corruption when values exceed 255.	CWE-125
atgc_age_threshold	path	/sys/fs/f2fs/vde/atgc_age_threshold	Out-of-bounds read/write in sysfs attribute age_threshold (64-bit) when values exceed UINT_MAX.	CWE-125

17 Jun 2026 10:21Current

5.8Medium risk

Vulners AI Score5.8

CVSS 3.17.1

EPSS0.00156

CWE-125