Vulnerability Description
In the Linux kernel, the following vulnerability has been resolved: uacce: fix isolate sysfs check condition uacce supports the device isolation feature. If the driver implements the isolate_err_threshold_read and isolate_err_threshold_write callback functions, uacce will create sysfs files now. Users can read and configure the isolation policy through sysfs. Currently, sysfs files are created as long as either isolate_err_threshold_read or isolate_err_threshold_write callback functions are present. However, accessing a non-existent callback function may cause the system to crash. Therefore, intercept the creation of sysfs if neither read nor write exists; create sysfs if either is supported, but intercept unsupported operations at the call site.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Linux | Linux Kernel | >= 6.3, < 6.6.122 |
References
- https://git.kernel.org/stable/c/82821a681d5dcce31475a65190fc39ea8f372cc0Patch
- https://git.kernel.org/stable/c/98eec349259b1fd876f350b1c600403bcef8f85dPatch
- https://git.kernel.org/stable/c/9ab05cdcac354b1b1139918f49c6418b9005d042Patch
- https://git.kernel.org/stable/c/fdbbb47d15ae17bf39fafec7e2028c1f8efba15ePatch
FAQ
What is CVE-2026-23094?
CVE-2026-23094 is a vulnerability with a CVSS score of 5.5 (MEDIUM). In the Linux kernel, the following vulnerability has been resolved: uacce: fix isolate sysfs check condition uacce supports the device isolation feature. If the driver implements the isolate_err_thr...
How severe is CVE-2026-23094?
CVE-2026-23094 has been rated MEDIUM with a CVSS base score of 5.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2026-23094?
Check the references section above for vendor advisories and patch information. Affected products include: Linux Linux Kernel.