{"dataType":"CVE_RECORD","dataVersion":"5.2","cveMetadata":{"cveId":"CVE-2026-23045","assignerOrgId":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","state":"PUBLISHED","assignerShortName":"Linux","dateReserved":"2026-01-13T15:37:45.944Z","datePublished":"2026-02-04T16:00:27.874Z","dateUpdated":"2026-05-11T21:58:56.122Z"},"containers":{"cna":{"providerMetadata":{"orgId":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","shortName":"Linux","dateUpdated":"2026-05-11T21:58:56.122Z"},"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nnet/ena: fix missing lock when update devlink params\n\nFix assert lock warning while calling devl_param_driverinit_value_set()\nin ena.\n\nWARNING: net/devlink/core.c:261 at devl_assert_locked+0x62/0x90, CPU#0: kworker/0:0/9\nCPU: 0 UID: 0 PID: 9 Comm: kworker/0:0 Not tainted 6.19.0-rc2+ #1 PREEMPT(lazy)\nHardware name: Amazon EC2 m8i-flex.4xlarge/, BIOS 1.0 10/16/2017\nWorkqueue: events work_for_cpu_fn\nRIP: 0010:devl_assert_locked+0x62/0x90\n\nCall Trace:\n <TASK>\n devl_param_driverinit_value_set+0x15/0x1c0\n ena_devlink_alloc+0x18c/0x220 [ena]\n ? __pfx_ena_devlink_alloc+0x10/0x10 [ena]\n ? trace_hardirqs_on+0x18/0x140\n ? lockdep_hardirqs_on+0x8c/0x130\n ? __raw_spin_unlock_irqrestore+0x5d/0x80\n ? __raw_spin_unlock_irqrestore+0x46/0x80\n ? devm_ioremap_wc+0x9a/0xd0\n ena_probe+0x4d2/0x1b20 [ena]\n ? __lock_acquire+0x56a/0xbd0\n ? __pfx_ena_probe+0x10/0x10 [ena]\n ? local_clock+0x15/0x30\n ? __lock_release.isra.0+0x1c9/0x340\n ? mark_held_locks+0x40/0x70\n ? lockdep_hardirqs_on_prepare.part.0+0x92/0x170\n ? trace_hardirqs_on+0x18/0x140\n ? lockdep_hardirqs_on+0x8c/0x130\n ? __raw_spin_unlock_irqrestore+0x5d/0x80\n ? __raw_spin_unlock_irqrestore+0x46/0x80\n ? __pfx_ena_probe+0x10/0x10 [ena]\n ......\n </TASK>"}],"affected":[{"product":"Linux","vendor":"Linux","defaultStatus":"unaffected","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","programFiles":["drivers/net/ethernet/amazon/ena/ena_devlink.c"],"versions":[{"version":"816b52624cf6a03ea541956b448025d844a8287d","lessThan":"f2c4bcfa193eef1b7457a56be9c47a8de015f225","status":"affected","versionType":"git"},{"version":"816b52624cf6a03ea541956b448025d844a8287d","lessThan":"8da901ffe497a53fa4ecc3ceed0e6d771586f88e","status":"affected","versionType":"git"}]},{"product":"Linux","vendor":"Linux","defaultStatus":"affected","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","programFiles":["drivers/net/ethernet/amazon/ena/ena_devlink.c"],"versions":[{"version":"6.17","status":"affected"},{"version":"0","lessThan":"6.17","status":"unaffected","versionType":"semver"},{"version":"6.18.6","lessThanOrEqual":"6.18.*","status":"unaffected","versionType":"semver"},{"version":"6.19","lessThanOrEqual":"*","status":"unaffected","versionType":"original_commit_for_fix"}]}],"cpeApplicability":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"6.17","versionEndExcluding":"6.18.6"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"6.17","versionEndExcluding":"6.19"}]}]}],"references":[{"url":"https://git.kernel.org/stable/c/f2c4bcfa193eef1b7457a56be9c47a8de015f225"},{"url":"https://git.kernel.org/stable/c/8da901ffe497a53fa4ecc3ceed0e6d771586f88e"}],"title":"net/ena: fix missing lock when update devlink params","x_generator":{"engine":"bippy-1.2.0"}}}}