VYPR
Critical severity9.8NVD Advisory· Published Feb 13, 2026· Updated Jun 2, 2026

CVE-2026-23112

CVE-2026-23112

Description

In the Linux kernel, the following vulnerability has been resolved:

nvmet-tcp: add bounds checks in nvmet_tcp_build_pdu_iovec

nvmet_tcp_build_pdu_iovec() could walk past cmd->req.sg when a PDU length or offset exceeds sg_cnt and then use bogus sg->length/offset values, leading to _copy_to_iter() GPF/KASAN. Guard sg_idx, remaining entries, and sg->length/offset before building the bvec.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

87

Patches

Vulnerability mechanics

References

8

News mentions

0

No linked articles in our index yet.