2 matches found
EUVD-2026-18746
In the Linux kernel, the following vulnerability has been resolved: iouring/poll: fix multishot recv missing EOF on wakeup race When a socket send and shutdown happen back-to-back, both fire wake-ups before the receiver's taskwork has a chance to run. The first wake gets poll ownership pollrefs=1...
CVE-2026-23473
The CVE-2026-23473 issue affects the Linux kernel io_uring/poll path. A race occurs when a socket send and shutdown() wake up the poll loop back-to-back; the first wake assigns poll ownership (poll_refs=1) and the second increments to 2. io_poll_check_events() calls io_poll_issue(), which perform...