Join us

FAUN.dev() is where engineers from GitHub, Netflix, and Shopify go to stay ahead โ€” fast.

An effortless, straightforward way to keep up with technologies...so you can keep your tabs closed and your mind open!
70,000+ developers already joined our ecosystem โญโญโญโญโญ
Trusted by engineers at:
Google โ€ข Microsoft โ€ข AWS โ€ข Netflix

๐—–๐—ฉ๐—˜-๐Ÿฎ๐Ÿฌ๐Ÿฎ๐Ÿฒ-๐Ÿฎ๐Ÿฏ๐Ÿญ๐Ÿญ๐Ÿฎ: ๐—ก๐—ฉ๐— ๐—ฒ/๐—ง๐—–๐—ฃ ๐—ž๐—ฒ๐—ฟ๐—ป๐—ฒ๐—น ๐——๐—ผ๐—ฆ ๐—ฉ๐—ฒ๐—ฐ๐˜๐—ผ๐—ฟ โ€“ ๐—ค๐˜‚๐—ถ๐—ฐ๐—ธ ๐—œ๐—ป๐˜€๐—ถ๐—ด๐—ต๐˜

@laura_garcia ใƒป Mar 25,2026 ใƒป 1 min read ใƒป 360 views ย 

Knowledge base Troubleshooting - CVE-2026-23112 - relianoid

๐Ÿ” ๐—–๐—ฉ๐—˜-๐Ÿฎ๐Ÿฌ๐Ÿฎ๐Ÿฒ-๐Ÿฎ๐Ÿฏ๐Ÿญ๐Ÿญ๐Ÿฎ: ๐—ก๐—ฉ๐— ๐—ฒ/๐—ง๐—–๐—ฃ ๐—ž๐—ฒ๐—ฟ๐—ป๐—ฒ๐—น ๐——๐—ผ๐—ฆ ๐—ฉ๐—ฒ๐—ฐ๐˜๐—ผ๐—ฟ โ€“ ๐—ค๐˜‚๐—ถ๐—ฐ๐—ธ ๐—œ๐—ป๐˜€๐—ถ๐—ด๐—ต๐˜

A new Linux kernel vulnerability (CVE-2026-23112) affects the NVMe/TCP target (nvmet-tcp), exposing systems to potential kernel crashes and Denial of Service (DoS) conditions.

โš™๏ธ ๐—ช๐—ต๐—ฎ๐˜โ€™๐˜€ ๐—ต๐—ฎ๐—ฝ๐—ฝ๐—ฒ๐—ป๐—ถ๐—ป๐—ด?

Improper validation in nvmet_tcp_build_pdu_iovec()

Out-of-bounds access in scatter-gather (SG) lists

Triggered via crafted NVMe/TCP traffic

โžก๏ธ Result: NULL pointer dereference โ†’ kernel panic

๐Ÿšจ ๐—ช๐—ต๐˜† ๐—ถ๐˜ ๐—บ๐—ฎ๐˜๐˜๐—ฒ๐—ฟ๐˜€

Impacts availability, not privilege escalation

Relevant in NVMe/TCP storage environments

Higher risk if exposed beyond trusted networks

๐Ÿ›ก๏ธ ๐—ฅ๐—˜๐—Ÿ๐—œ๐—”๐—ก๐—ข๐—œ๐—— ๐—ฆ๐˜๐—ฎ๐˜๐˜‚๐˜€: ๐—ก๐—ผ๐˜ ๐—ฎ๐—ณ๐—ณ๐—ฒ๐—ฐ๐˜๐—ฒ๐—ฑ

NVMe/TCP target is ๐—ป๐—ผ๐˜ ๐˜‚๐˜€๐—ฒ๐—ฑ ๐—ป๐—ผ๐—ฟ ๐—น๐—ผ๐—ฎ๐—ฑ๐—ฒ๐—ฑ

Not part of the RELIANOID architecture

โžก๏ธ No exploit path in real deployments

โœ… ๐—ฅ๐—ฒ๐—ฐ๐—ผ๐—บ๐—บ๐—ฒ๐—ป๐—ฑ๐—ฎ๐˜๐—ถ๐—ผ๐—ป

No immediate action required for RELIANOID users

Upgrade to:

EE > 8.5

CE > 7.9

Review NVMe/TCP exposure in your infrastructure

๐Ÿ‘‰ Full technical breakdown in the article below.

https://www.relianoid.com/resources/knowledge-base/troubleshooting/cve-2026-23112-null-pointer-dereference-in-nvme-tcp-nvmet_tcp_build_pdu_iovec/

#CyberSecurity #LinuxKernel #NVMe #CIO #ITSecurity #Networking #RELIANOID

Let's keep in touch!

Stay updated with my latest posts and news. I share insights, updates, and exclusive content.

Unsubscribe anytime. By subscribing, you share your email with @laura_garcia and accept our Terms & Privacy.

Give a Pawfive to this post!

Only registered users can post comments. Please, login or signup.

Share with your friends and followers

Start writing about what excites you in tech โ€” connect with developers, grow your voice, and get rewarded.

Join other developers and claim your FAUN.dev() account now!

Publish your first story!

FAUN.dev() is where engineers from GitHub, Netflix, and Shopify go to stay ahead โ€” fast.

An effortless, straightforward way to keep up with technologies...so you can keep your tabs closed and your mind open!
70,000+ developers already joined our ecosystem โญโญโญโญโญ
Trusted by engineers at:
Google โ€ข Microsoft โ€ข AWS โ€ข Netflix
Avatar

Laura Garcia

Software Developer, RELIANOID

@laura_garcia
Software Developer
Developer Influence
834

Influence

80k

Total Hits

449

Posts

Join and showcase your work and skills