Main Vulnerability Database SB2026021892

SB2026021892 - Improper locking in Linux kernel crypto virtio driver

Published: February 18, 2026

Security Bulletin ID SB2026021892

Severity

Low

Patch available

YES

Number of vulnerabilities 1

Exploitation vector Local access

Highest impact Denial of service

Breakdown by Severity

Low
Medium
High
Critical

Description

This security bulletin contains information about 1 security vulnerability.

1) Improper locking (CVE-ID: CVE-2026-23229)

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper locking within the virtcrypto_done_task() function in drivers/crypto/virtio/virtio_crypto_core.c. A local user can perform a denial of service (DoS) attack.

Remediation

Install update from vendor's website.

References

https://git.kernel.org/stable/c/49c57c6c108931a914ed94e3c0ddb974008260a3
https://git.kernel.org/stable/c/c0a0ded3bb7fd45f720faa48449a930153257d3a
https://git.kernel.org/stable/c/d6f0d586808689963e58fd739bed626ff5013b24
https://git.kernel.org/stable/c/e69a7b0a71b6561b3b6459f1fded8d589f2e8ac2