Signal
Two use-after-free vulnerabilities fixed in Linux kernel components
Two use-after-free vulnerabilities affecting Linux kernel drivers have been publicly disclosed and fixed. CVE-2026-23171 addresses a use-after-free flaw in the bonding driver triggered by enslave failure after updating the slave array. CVE-2026-23221 resolves a similar use-after-free issue in the fsl-mc bus driver’s driver_override_show function. These fixes mitigate potential memory corruption risks and are documented in the Microsoft Security Update Guide.
rss
vulnerabilitycvelinux_kerneluse_after_freepatch
Evidence locked
Today's free sample is only available for the edition's flagship signal.
Evidence preview
- Microsoft Security Update Guide (MSRC) RSSmsrc.microsoft.com
- CVE-2026-23221 bus: fsl-mc: fix use-after-free in driver_override_show()Microsoft Security Update Guide (MSRC) RSS