Linux kernel XFS: NULL return mishandled in xchk_scrub_create_subord
CVE-2026-23250 Published on March 18, 2026
xfs: check return value of xchk_scrub_create_subord
In the Linux kernel, the following vulnerability has been resolved:
xfs: check return value of xchk_scrub_create_subord
Fix this function to return NULL instead of a mangled ENOMEM, then fix
the callers to actually check for a null pointer and return ENOMEM.
Most of the corrections here are for code merged between 6.2 and 6.10.
Products Associated with CVE-2026-23250
Want to know whenever a new CVE is published for Linux Kernel? stack.watch will email you.
Affected Versions
Linux:- Version 1a5f6e08d4e379a23da5be974aee50b26a20c5b0 and below d6f3f7d4dd8a179394cef03c00993d57f5f68601 is affected.
- Version 1a5f6e08d4e379a23da5be974aee50b26a20c5b0 and below 2b658d1249666cc55af9484dcf5f45ca438d4ecc is affected.
- Version 1a5f6e08d4e379a23da5be974aee50b26a20c5b0 and below b2df809edd8cb7d1c3e19d9f6aabc2bd55d2bfb6 is affected.
- Version 1a5f6e08d4e379a23da5be974aee50b26a20c5b0 and below ca27313fb3f23e4ac18532ede4ec1c7cc5814c4a is affected.
- Version 6.10 is affected.
- Before 6.10 is unaffected.
- Version 6.12.75, <= 6.12.* is unaffected.
- Version 6.18.16, <= 6.18.* is unaffected.
- Version 6.19.6, <= 6.19.* is unaffected.
- Version 7.0, <= * is unaffected.
Exploit Probability
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.