CVE-2026-23218 - Vulnerability Details

- gpio: loongson-64bit: Fix incorrect NULL check after devm_kcalloc()

Description

In the Linux kernel, the following vulnerability has been resolved:

gpio: loongson-64bit: Fix incorrect NULL check after devm_kcalloc()

Fix incorrect NULL check in loongson_gpio_init_irqchip().
The function checks chip->parent instead of chip->irq.parents.

Published: 2026-02-18

Score: 5.5 Medium

EPSS: < 1% Very Low

KEV: No

Impact:

Action:

Analysis

Impact

The loongson‑64bit GPIO driver contains a faulty NULL check performed after allocating memory. The code compares the wrong structure field—chip->parent—instead of chip->irq.parents. If chip->irq.parents is NULL, this mistake can lead to a NULL pointer dereference in the kernel, which, as a typical outcome of CWE‑476, would likely cause a kernel panic and a loss of service. The official description does not explicitly state that a crash will occur, but the nature of the flaw and the identified CWE allow us to infer that the vulnerability could lead to a denial‑of‑service event.

Affected Systems

The vulnerability is present in the Linux kernel loongson‑64bit driver for the 6.19 release candidate series, specifically rc1 through rc8. Systems that run these kernel versions on Loongson‑64bit architectures and have the driver compiled or loaded are potentially affected.

Risk and Exploitability

The CVSS score of 5.5 indicates a moderate severity, and the EPSS score of less than 1% suggests a low likelihood of exploitation at this time. The vulnerability is not listed in the CISA KEV catalog. The attack vector is not explicitly detailed; however, because the defect appears during driver initialization, it most likely requires local access sufficient to load or recompile the module. Root or privileged users who can load the driver would therefore enable an attacker to trigger the crash, while remote exploitation appears unlikely from the information provided.

Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).

Vendor Product Default status Versions

Linux

unaffected

Version	Status	Constraints
`03c146cb6cd14fdab2d2c7ab1b4e8035b54df8cc`	affected	< e71e3fa90a15134113f61343392e887cd1f4bf7c
`03c146cb6cd14fdab2d2c7ab1b4e8035b54df8cc`	affected	< e34f77b09080c86c929153e2a72da26b4f8947ff

Linux

affected

Version	Status	Constraints
`6.18`	affected	—
`0`	unaffected	< 6.18
`6.18.10`	unaffected	≤ 6.18.*
`6.19`	unaffected	≤ *

Configuration 1 [-]

OR	cpe:2.3:o:linux:linux_kernel::::::::
	cpe:2.3:o:linux:linux_kernel:6.19:rc1::::::
	cpe:2.3:o:linux:linux_kernel:6.19:rc2::::::
	cpe:2.3:o:linux:linux_kernel:6.19:rc3::::::
	cpe:2.3:o:linux:linux_kernel:6.19:rc4::::::
	cpe:2.3:o:linux:linux_kernel:6.19:rc5::::::
	cpe:2.3:o:linux:linux_kernel:6.19:rc6::::::
	cpe:2.3:o:linux:linux_kernel:6.19:rc7::::::
	cpe:2.3:o:linux:linux_kernel:6.19:rc8::::::

No data.

Vendor Product Confidence Versions

Linux

Linux Kernel

99%

Version	Status	Scheme	Platform
`[03c146cb6cd14fdab2d2c7ab1b4e8035b54df8cc,e71e3fa90a15134113f61343392e887cd1f4bf7c)`	affected	code_commit	—
`[03c146cb6cd14fdab2d2c7ab1b4e8035b54df8cc,e34f77b09080c86c929153e2a72da26b4f8947ff)`	affected	code_commit	—

Linux

Linux Kernel

99%

Version	Status	Scheme	Platform
`6.18`	affected	generic	—
`[0,6.18)`	unaffected	generic	—
`[6.18.10,6.19.0)`	unaffected	semver	—
`[6.19,*]`	unaffected	generic	—

Found an issue or want to improve our Enrichment? You can suggest it directly by opening an issue on our dedicated GitHub repository .

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

Upgrade the Linux kernel to a version that includes the patch for CVE-2026-23218, such as the next release after 6.19 rc8.
Disable the loongson-64bit GPIO driver or prevent its module from being loaded if a kernel upgrade is not immediately possible.
Monitor the system for attempts to load the driver module and review kernel logs for SIGKILL or Oops events that might indicate a crash related to this bug.

Generated by OpenCVE AI on April 18, 2026 at 11:56 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

No CVSS v4.0

Attack Vector Local

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

The EPSS score is 0.00017.

Key SSVC decision points have not yet been added.

References

Link	Providers
https://git.kernel.org/stable/c/e34f77b09080c86c929153e2a72da26b4f8947ff
https://git.kernel.org/stable/c/e71e3fa90a15134113f61343392e887cd1f4bf7c
https://lore.kernel.org/linux-cve-announce/2026021801-CVE-2026-23218-4114@gregkh/T
https://nvd.nist.gov/vuln/detail/CVE-2026-23218
https://www.cve.org/CVERecord?id=CVE-2026-23218

History

Wed, 18 Mar 2026 17:45:00 +0000

Type	Values Removed	Values Added
Weaknesses		CWE-476
CPEs		cpe:2.3:o:linux:linux_kernel:6.19:rc1:::::: cpe:2.3:o:linux:linux_kernel:6.19:rc2:::::: cpe:2.3:o:linux:linux_kernel:6.19:rc3:::::: cpe:2.3:o:linux:linux_kernel:6.19:rc4:::::: cpe:2.3:o:linux:linux_kernel:6.19:rc5:::::: cpe:2.3:o:linux:linux_kernel:6.19:rc6:::::: cpe:2.3:o:linux:linux_kernel:6.19:rc7:::::: cpe:2.3:o:linux:linux_kernel:6.19:rc8::::::
Metrics		cvssV3_1 `{'score': 5.5, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H'}`

Thu, 19 Feb 2026 00:15:00 +0000

Type	Values Removed	Values Added
References		https://lore.kernel.org/linux-cve-announce/2026021801-CVE-2026-23218-4114@gregkh/T https://nvd.nist.gov/vuln/detail/CVE-2026-23218 https://www.cve.org/CVERecord?id=CVE-2026-23218
Metrics	threat_severity `None`	threat_severity `Moderate`

Wed, 18 Feb 2026 14:45:00 +0000

Type	Values Removed	Values Added
Description		In the Linux kernel, the following vulnerability has been resolved: gpio: loongson-64bit: Fix incorrect NULL check after devm_kcalloc() Fix incorrect NULL check in loongson_gpio_init_irqchip(). The function checks chip->parent instead of chip->irq.parents.
Title		gpio: loongson-64bit: Fix incorrect NULL check after devm_kcalloc()
First Time appeared		Linux Linux linux Kernel
CPEs		cpe:2.3:o:linux:linux_kernel::::::::
Vendors & Products		Linux Linux linux Kernel
References		https://git.kernel.org/stable/c/e34f77b09080c86c929153e2a72da26b4f8947ff https://git.kernel.org/stable/c/e71e3fa90a15134113f61343392e887cd1f4bf7c

Subscriptions

Linux Linux Kernel

MITRE

Status: PUBLISHED

Assigner: Linux

Published: 2026-02-18T14:21:55.906Z

Updated: 2026-02-18T14:21:55.906Z

Reserved: 2026-01-13T15:37:45.987Z

Link: CVE-2026-23218

Vulnrichment

No data.

NVD

Status : Analyzed

Published: 2026-02-18T15:18:43.187

Modified: 2026-03-18T17:31:03.320

Link: CVE-2026-23218

Redhat

Severity : Moderate

Publid Date: 2026-02-18T00:00:00Z

Links: CVE-2026-23218 - Bugzilla

OpenCVE Enrichment

Updated: 2026-04-18T12:00:05Z

Weaknesses

CWE-476

Impact

Affected Systems

Risk and Exploitability

Tracking

Attack Vector Local

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

Subscriptions

JSON object

JSON object

JSON object

JSON object

JSON object