CVE-2026-23306

🗓️ 25 Mar 2026 10:27:01Reported by LinuxType

Kernel fix: pm8001 use-after-free; return zero when task is handled to avoid double free.

Reporter	Title	Published	Views	Family All 43
ATTACKERKB	CVE-2026-23306	25 Mar 202610:27	–	attackerkb
AstraLinux	Astra Linux - уязвимость в linux-5.10	20 May 202605:53	–	astralinux
CBLMariner	CVE-2026-23306 affecting package kernel for versions less than 6.6.130.1-1	30 Mar 202616:12	–	cbl_mariner
Circl	CVE-2026-23306	29 Mar 202617:00	–	circl
CNNVD	Linux kernel 安全漏洞	25 Mar 202600:00	–	cnnvd
Cvelist	CVE-2026-23306 scsi: pm8001: Fix use-after-free in pm8001_queue_command()	25 Mar 202610:27	–	cvelist
Debian	[SECURITY] [DLA 4561-1] linux-6.1 security update	2 May 202608:40	–	debian
Debian	[SECURITY] [DSA 6238-1] linux security update	30 Apr 202620:05	–	debian
Debian	[SECURITY] [DSA 6243-1] linux security update	1 May 202619:10	–	debian
Debian CVE	CVE-2026-23306	25 Mar 202610:27	–	debiancve

NVD

Vulners

CNA

Node

linux linux_kernelRange5.18–6.1.167

linux linux_kernelRange6.2–6.6.130

linux linux_kernelRange6.7–6.12.77

linux linux_kernelRange6.13–6.18.17

linux linux_kernelRange6.19–6.19.7

linux linux_kernelMatch7.0rc1

[
  {
    "product": "Linux",
    "vendor": "Linux",
    "defaultStatus": "unaffected",
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "programFiles": [
      "drivers/scsi/pm8001/pm8001_sas.c"
    ],
    "versions": [
      {
        "version": "e29c47fe8946cc732b0e0d393b65b13c84bb69d0",
        "lessThan": "ebbb852ffbc952b95ddb7e3872b67b3e74c6da47",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "e29c47fe8946cc732b0e0d393b65b13c84bb69d0",
        "lessThan": "8b00427317ba7b7ec91252b034009f638d0f311b",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "e29c47fe8946cc732b0e0d393b65b13c84bb69d0",
        "lessThan": "c5dc39f8ae055520fd778b7fb0423f11586f15c4",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "e29c47fe8946cc732b0e0d393b65b13c84bb69d0",
        "lessThan": "824a7672e3540962d5c77d4c6666254d7aa6f0b3",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "e29c47fe8946cc732b0e0d393b65b13c84bb69d0",
        "lessThan": "227ff4af00abc40b95123cc27ee8079069dcd8d7",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "e29c47fe8946cc732b0e0d393b65b13c84bb69d0",
        "lessThan": "38353c26db28efd984f51d426eac2396d299cca7",
        "status": "affected",
        "versionType": "git"
      }
    ]
  },
  {
    "product": "Linux",
    "vendor": "Linux",
    "defaultStatus": "affected",
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "programFiles": [
      "drivers/scsi/pm8001/pm8001_sas.c"
    ],
    "versions": [
      {
        "version": "5.18",
        "status": "affected"
      },
      {
        "version": "0",
        "lessThan": "5.18",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "6.1.167",
        "lessThanOrEqual": "6.1.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "6.6.130",
        "lessThanOrEqual": "6.6.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "6.12.77",
        "lessThanOrEqual": "6.12.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "6.18.17",
        "lessThanOrEqual": "6.18.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "6.19.7",
        "lessThanOrEqual": "6.19.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "7.0",
        "lessThanOrEqual": "*",
        "status": "unaffected",
        "versionType": "original_commit_for_fix"
      }
    ]
  }
]

Source	Link
git	www.git.kernel.org/stable/c/c5dc39f8ae055520fd778b7fb0423f11586f15c4
git	www.git.kernel.org/stable/c/ebbb852ffbc952b95ddb7e3872b67b3e74c6da47
git	www.git.kernel.org/stable/c/8b00427317ba7b7ec91252b034009f638d0f311b
git	www.git.kernel.org/stable/c/824a7672e3540962d5c77d4c6666254d7aa6f0b3
git	www.git.kernel.org/stable/c/38353c26db28efd984f51d426eac2396d299cca7
git	www.git.kernel.org/stable/c/227ff4af00abc40b95123cc27ee8079069dcd8d7

28 May 2026 14:31Current

5.6Medium risk

Vulners AI Score5.6

CVSS 3.17.8

EPSS0.00018

CWE-416