Logo
-

Byte Open Security

(ByteOS Network)

Log In

Sign Up

ByteOS

Security
Vulnerability Details
Registries
Custom Views
Weaknesses
Attack Patterns
Filters & Tools
CVE Vulnerability Details :
CVE-2026-23350
PUBLISHED
More InfoOfficial Page
Assigner-Linux
Assigner Org ID-416baaa9-dc9f-4396-8d5f-8c081fb06d67
View Known Exploited Vulnerability (KEV) details
Published At-25 Mar, 2026 | 10:27
Updated At-11 May, 2026 | 22:05
Rejected At-
▼CVE Numbering Authority (CNA)
drm/xe/queue: Call fini on exec queue creation fail

In the Linux kernel, the following vulnerability has been resolved: drm/xe/queue: Call fini on exec queue creation fail Every call to queue init should have a corresponding fini call. Skipping this would mean skipping removal of the queue from GuC list (which is part of guc_id allocation). A damaged queue stored in exec_queue_lookup list would lead to invalid memory reference, sooner or later. Call fini to free guc_id. This must be done before any internal LRCs are freed. Since the finalization with this extra call became very similar to __xe_exec_queue_fini(), reuse that. To make this reuse possible, alter xe_lrc_put() so it can survive NULL parameters, like other similar functions. v2: Reuse _xe_exec_queue_fini(). Make xe_lrc_put() aware of NULLs. (cherry picked from commit 393e5fea6f7d7054abc2c3d97a4cfe8306cd6079)

Affected Products
Vendor
Linux Kernel Organization, IncLinux
Product
Linux
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Program Files
  • drivers/gpu/drm/xe/xe_exec_queue.c
  • drivers/gpu/drm/xe/xe_lrc.h
Default Status
unaffected
Versions
Affected
  • From 3c1fa4aa60b146d1fa73b2b87064303f8e4b7952 before fae65b8a4449ae556990efcde8d74bec4adc5925 (git)
  • From 3c1fa4aa60b146d1fa73b2b87064303f8e4b7952 before 99f9b5343cae80eb0dfe050baf6c86d722b3ba2e (git)
Vendor
Linux Kernel Organization, IncLinux
Product
Linux
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Program Files
  • drivers/gpu/drm/xe/xe_exec_queue.c
  • drivers/gpu/drm/xe/xe_lrc.h
Default Status
affected
Versions
Affected
  • 6.19
Unaffected
  • From 0 before 6.19 (semver)
  • From 6.19.7 through 6.19.* (semver)
  • From 7.0 through * (original_commit_for_fix)
Metrics
VersionBase scoreBase severityVector
3.17.8HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Version: 3.1
Base score: 7.8
Base severity: HIGH
Vector:
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Metrics Other Info
Impacts
CAPEC IDDescription
Solutions
Configurations
Workarounds
Exploits
Credits
Timeline
EventDate
Replaced By
Rejected Reason
References
HyperlinkResource
https://git.kernel.org/stable/c/fae65b8a4449ae556990efcde8d74bec4adc5925
N/A
https://git.kernel.org/stable/c/99f9b5343cae80eb0dfe050baf6c86d722b3ba2e
N/A
Hyperlink: https://git.kernel.org/stable/c/fae65b8a4449ae556990efcde8d74bec4adc5925
Resource: N/A
Hyperlink: https://git.kernel.org/stable/c/99f9b5343cae80eb0dfe050baf6c86d722b3ba2e
Resource: N/A
Details not found