CVE-2026-23106

Description

In the Linux kernel, the following vulnerability has been resolved:timekeeping: Adjust the leap state for the correct auxiliary timekeeperWhen __do_ajdtimex() was introduced to handle adjtimex for anytimekeeper, this reference to tk_core was not updated. When called on anauxiliary timekeeper, the core timekeeper would be updated incorrectly.This gets caught by the lock debugging diagnostics because thetimekeepers sequence lock gets written to without holding itsassociated spinlock:WARNING: include/linux/seqlock.h:226 at __do_adjtimex+0x394/0x3b0, CPU#2: test/125aux_clock_adj (kernel/time/timekeeping.c:2979)__do_sys_clock_adjtime (kernel/time/posix-timers.c:1161 kernel/time/posix-timers.c:1173)do_syscall_64 (arch/x86/entry/syscall_64.c:63 (discriminator 1) arch/x86/entry/syscall_64.c:94 (discriminator 1))entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:131)Update the correct auxiliary timekeeper.

Risk Information

Base Score

5.5

MODERATE

Vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

EPSS Score

Exploitation Probability

0.017

Associated Vulnerability

No records found

Patch Details

No records found

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234