Description

In the Linux kernel, the following vulnerability has been resolved: drm/xe/queue: Call fini on exec queue creation fail Every call to queue init should have a corresponding fini call. Skipping this would mean skipping removal of the queue from GuC list (which is part of guc_id allocation). A damaged queue stored in exec_queue_lookup list would lead to invalid memory reference, sooner or later. Call fini to free guc_id. This must be done before any internal LRCs are freed. Since the finalization with this extra call became very similar to __xe_exec_queue_fini(), reuse that. To make this reuse possible, alter xe_lrc_put() so it can survive NULL parameters, like other similar functions. v2: Reuse _xe_exec_queue_fini(). Make xe_lrc_put() aware of NULLs. (cherry picked from commit 393e5fea6f7d7054abc2c3d97a4cfe8306cd6079)

INFO

Published Date :

2026-03-25T10:27:36.182Z

Last Modified :

2026-04-13T06:05:34.327Z

Source :

Linux
AFFECTED PRODUCTS

The following products are affected by CVE-2026-23350 vulnerability.

Vendors Products
Linux
  • Linux Kernel
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2026-23350.

URL Resource
https://git.kernel.org/stable/c/99f9b5343cae80eb0dfe050baf6c86d722b3ba2e cve-icon cve-icon
https://git.kernel.org/stable/c/fae65b8a4449ae556990efcde8d74bec4adc5925 cve-icon cve-icon
https://lore.kernel.org/linux-cve-announce/2026032536-CVE-2026-23350-f4be@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2026-23350 cve-icon
https://www.cve.org/CVERecord?id=CVE-2026-23350 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact