CVE-2026-23419

In the Linux kernel, the following vulnerability has been resolved: net/rds: Fix circular locking dependency in rds_tcp_tune syzbot reported a circular locking dependency in rds_tcp_tune() where sk_net_refcnt_upgrade() is called while holding the socket lock: ====================================================== WARNING: possible circular locking dependency detected ====================================================== kworker/u10:8/15040 is trying to acquire lock: ffffffff8e9aaf80 (fs_reclaim){+.+.}-{0:0}, at: __kmalloc_cache_noprof+0x4b/0x6f0 but task is already holding lock: ffff88805a3c1ce0 (k-sk_lock-AF_INET6){+.+.}-{0:0}, at: rds_tcp_tune+0xd7/0x930 The issue occurs because sk_net_refcnt_upgrade() performs memory allocation (via get_net_track() -> ref_tracker_alloc()) while the socket lock is held, creating a circular dependency with fs_reclaim. Fix this by moving sk_net_refcnt_upgrade() outside the socket lock critical section. This is safe because the fields modified by the sk_net_refcnt_upgrade() call (sk_net_refcnt, ns_tracker) are not accessed by any concurrent code path at this point. v2: - Corrected fixes tag - check patch line wrap nits - ai commentary nits

CVSS v3 7.5 HIGH

7.5^/10

CVSS v3 : HIGH

V3 Legend

Vector :

Exploitability : 3.9 / Impact : 3.6

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact HIGH

Scope UNCHANGED

References

Link	Resource
https://git.kernel.org/stable/c/026bbaeeab9e04534ee58882b6447300629b42f6	Patch
https://git.kernel.org/stable/c/6a877ececd6daa002a9a0002cd0fbca6592a9244	Patch
https://git.kernel.org/stable/c/6ce948fa54599f369ff7fe8b793a6aae4b0762b2	Patch
https://git.kernel.org/stable/c/8519e6883a942e510f33a0e634e27bcc3a844a40	Patch
https://git.kernel.org/stable/c/8babb271403378ba6836f6c8599c5313d0e2355d	Patch

Configurations

Configuration 1 (hide)

OR	cpe:2.3:o:linux:linux_kernel::::::::
	cpe:2.3:o:linux:linux_kernel::::::::
	cpe:2.3:o:linux:linux_kernel::::::::
	cpe:2.3:o:linux:linux_kernel::::::::
	cpe:2.3:o:linux:linux_kernel::::::::
	cpe:2.3:o:linux:linux_kernel:5.18:-::::::
	cpe:2.3:o:linux:linux_kernel:7.0:rc1::::::
	cpe:2.3:o:linux:linux_kernel:7.0:rc2::::::
	cpe:2.3:o:linux:linux_kernel:7.0:rc3::::::
	cpe:2.3:o:linux:linux_kernel:7.0:rc4::::::
	cpe:2.3:o:linux:linux_kernel:7.0:rc5::::::
	cpe:2.3:o:linux:linux_kernel:7.0:rc6::::::
	cpe:2.3:o:linux:linux_kernel:7.0:rc7::::::

History

27 Apr 2026, 14:16

Type	Values Removed	Values Added
CVSS	v2 : ~~unknown~~ v3 : ~~5.5~~	v2 : unknown v3 : 7.5

24 Apr 2026, 15:21

Type	Values Removed	Values Added
References	~~() https://git.kernel.org/stable/c/026bbaeeab9e04534ee58882b6447300629b42f6 -~~	() https://git.kernel.org/stable/c/026bbaeeab9e04534ee58882b6447300629b42f6 - Patch
References	~~() https://git.kernel.org/stable/c/6a877ececd6daa002a9a0002cd0fbca6592a9244 -~~	() https://git.kernel.org/stable/c/6a877ececd6daa002a9a0002cd0fbca6592a9244 - Patch
References	~~() https://git.kernel.org/stable/c/6ce948fa54599f369ff7fe8b793a6aae4b0762b2 -~~	() https://git.kernel.org/stable/c/6ce948fa54599f369ff7fe8b793a6aae4b0762b2 - Patch
References	~~() https://git.kernel.org/stable/c/8519e6883a942e510f33a0e634e27bcc3a844a40 -~~	() https://git.kernel.org/stable/c/8519e6883a942e510f33a0e634e27bcc3a844a40 - Patch
References	~~() https://git.kernel.org/stable/c/8babb271403378ba6836f6c8599c5313d0e2355d -~~	() https://git.kernel.org/stable/c/8babb271403378ba6836f6c8599c5313d0e2355d - Patch
CPE		cpe:2.3:o:linux:linux_kernel:7.0:rc1:::::: cpe:2.3:o:linux:linux_kernel:7.0:rc6:::::: cpe:2.3:o:linux:linux_kernel:7.0:rc7:::::: cpe:2.3:o:linux:linux_kernel:::::::: cpe:2.3:o:linux:linux_kernel:7.0:rc2:::::: cpe:2.3:o:linux:linux_kernel:5.18:-:::::: cpe:2.3:o:linux:linux_kernel:7.0:rc4:::::: cpe:2.3:o:linux:linux_kernel:7.0:rc3:::::: cpe:2.3:o:linux:linux_kernel:7.0:rc5::::::
CVSS	v2 : ~~unknown~~ v3 : ~~unknown~~	v2 : unknown v3 : 5.5
CWE		CWE-667
First Time		Linux Linux linux Kernel

03 Apr 2026, 14:16

Type	Values Removed	Values Added
New CVE

Information

Published : 2026-04-03 14:16

Updated : 2026-04-27 14:16

NVD link : CVE-2026-23419

Mitre link : CVE-2026-23419

CVE.ORG link : CVE-2026-23419

JSON object : View

Products Affected

linux

linux_kernel

CWE

CWE-667

Improper Locking

7.5 /10