Zero Day MonitorZDM

← Back to list

—

CVE-2026-23473PATCHED

linux · linux kernel

io_uring/poll: fix multishot recv missing EOF on wakeup race

Description

A vulnerability categorized as critical has been discovered in Linux Kernel up to 6.18.19/6.19.9/7.0-rc4. This vulnerability affects the function shutdown. Such manipulation leads to state issue. This vulnerability is referenced as CVE-2026-23473.

Affected Products

Vendor	Product	Versions
linux	linux kernel	dbc2564cfe0faff439dc46adb8c009589054ea46, dbc2564cfe0faff439dc46adb8c009589054ea46, dbc2564cfe0faff439dc46adb8c009589054ea46, 5.19, 6.18.19, 6.19.9, 7.0-rc4

References

Related News (3 articles)

Tier A

Microsoft MSRC1d ago

CVE-2026-23473 io_uring/poll: fix multishot recv missing EOF on wakeup race

→ No new info (linked only)

Tier C

VulDB2d ago

CVE-2026-23473 | Linux Kernel up to 6.18.19/6.19.9/7.0-rc4 shutdown state issue

→ No new info (linked only)

Tier C

Linux Kernel CVEs2d ago

CVE-2026-23473: io_uring/poll: fix multishot recv missing EOF on wakeup race

→ No new info (linked only)

CISA KEV❌ No

Actively exploited❌ No

Patch available

0f4ce79b8db7b040373fc664c8bc6c5fd74bd196bf33554b6abf7e7faeadd8af1b82037ea755a6bba68ed2df72131447d131531a08fe4dfcf4fa465306.18.206.19.107.0-rc5

PublishedApr 3, 2026

Last enriched2d agov2

Trending Score40

Source articles3

Independent3

Info Completeness7/14

Missing: cvss, epss, cwe, kev, exploit, iocs, mitre_attack

Community Vote

0 upvotes0 downvotes

No votes yet

Related CVEs (5)

CRITICALCVE-2026-23444EXP

wifi: mac80211: always free skb on ieee80211_tx_prepare_skb() failure

NONECVE-2026-31410EXP

ksmbd: use volume UUID in FS_OBJECT_ID_INFORMATION

NONECVE-2026-23472EXP

serial: core: fix infinite loop in handle_tx() for PORT_UNKNOWN

CRITICALCVE-2026-23442

ipv6: add NULL checks for idev in SRv6 paths

CRITICALCVE-2026-23443EXP

ACPI: processor: Fix previous acpi_processor_errata_piix4() fix

Pin to Dashboard

Verification

State: unverified

Confidence: 0%

Vulnerability Timeline

CVE Published

Apr 3, 2026

Patch Available

Apr 3, 2026

Discovered by ZDM

Apr 3, 2026

Updated: description, severity, affectedVersions

Apr 3, 2026

Version History

v2

Last enriched 2d ago

v2Tier C2d ago

Updated severity to CRITICAL, added new affected versions, and provided a new description with CVE-2026-23473.

descriptionseverityaffectedVersions

via VulDB

v12d ago

Initial creation