Detections
Analytics

CVE-2026-23094

high

Description

In the Linux kernel, the following vulnerability has been resolved: uacce: fix isolate sysfs check condition uacce supports the device isolation feature. If the driver implements the isolate_err_threshold_read and isolate_err_threshold_write callback functions, uacce will create sysfs files now. Users can read and configure the isolation policy through sysfs. Currently, sysfs files are created as long as either isolate_err_threshold_read or isolate_err_threshold_write callback functions are present. However, accessing a non-existent callback function may cause the system to crash. Therefore, intercept the creation of sysfs if neither read nor write exists; create sysfs if either is supported, but intercept unsupported operations at the call site.

References

https://git.kernel.org/stable/c/fdbbb47d15ae17bf39fafec7e2028c1f8efba15e

https://git.kernel.org/stable/c/9ab05cdcac354b1b1139918f49c6418b9005d042

https://git.kernel.org/stable/c/98eec349259b1fd876f350b1c600403bcef8f85d

https://git.kernel.org/stable/c/82821a681d5dcce31475a65190fc39ea8f372cc0

Details

Source: Mitre, NVD

Published: 2026-02-04

Updated: 2026-02-05

Risk Information

CVSS v2

Base Score: 7.2

Vector: CVSS2#AV:L/AC:L/Au:N/C:C/I:C/A:C

Severity: High

CVSS v3

Base Score: 7.8

Vector: CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Severity: High

EPSS

EPSS: 0.00018