7.8
CVE-2026-53050
- EPSS 0.13%
- Veröffentlicht 24.06.2026 16:29:56
- Zuletzt bearbeitet 28.06.2026 08:16:31
- Quelle 416baaa9-dc9f-4396-8d5f-8c081f
- CVE-Watchlists
- Unerledigt
quota: Fix race of dquot_scan_active() with quota deactivation
In the Linux kernel, the following vulnerability has been resolved:
quota: Fix race of dquot_scan_active() with quota deactivation
dquot_scan_active() can race with quota deactivation in
quota_release_workfn() like:
CPU0 (quota_release_workfn) CPU1 (dquot_scan_active)
============================== ==============================
spin_lock(&dq_list_lock);
list_replace_init(
&releasing_dquots, &rls_head);
/* dquot X on rls_head,
dq_count == 0,
DQ_ACTIVE_B still set */
spin_unlock(&dq_list_lock);
synchronize_srcu(&dquot_srcu);
spin_lock(&dq_list_lock);
list_for_each_entry(dquot,
&inuse_list, dq_inuse) {
/* finds dquot X */
dquot_active(X) -> true
atomic_inc(&X->dq_count);
}
spin_unlock(&dq_list_lock);
spin_lock(&dq_list_lock);
dquot = list_first_entry(&rls_head);
WARN_ON_ONCE(atomic_read(&dquot->dq_count));
The problem is not only a cosmetic one as under memory pressure the
caller of dquot_scan_active() can end up working on freed dquot.
Fix the problem by making sure the dquot is removed from releasing list
when we acquire a reference to it.Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).
HerstellerLinux
≫
Produkt
Linux
Default Statusunaffected
Version
22c06bf1f99ec3ec16b1a81342becba4c59a1f16
Version <
2bdc80f4619411e5bd4a3ef23f51e14021ed457c
Status
affected
Version
56e96b38d2f7cd95b3c30eb70decac7233915e0a
Version <
f9438cb8c8ec3adc84b2b450a3aab0123d074c3b
Status
affected
Version
12a820a9923c11e8e898da9f82c8aded70cdcd16
Version <
ac8a2e0d287ebf35e5d7e51e260b4e146648ba4a
Status
affected
Version
869b6ea1609f655a43251bf41757aa44e5350a8f
Version <
6678dde265708003c2b42551af4a2e3cb05decd5
Status
affected
Version
869b6ea1609f655a43251bf41757aa44e5350a8f
Version <
61e25f664dc2a08299e07d84c85776abc2350f75
Status
affected
Version
869b6ea1609f655a43251bf41757aa44e5350a8f
Version <
fdd424d7c35633ac577fd87d1b043d1b8a6cd350
Status
affected
Version
869b6ea1609f655a43251bf41757aa44e5350a8f
Version <
82cbdb4c1ebb5ea7d7bd45c18d3483b5bd32ebc1
Status
affected
Version
869b6ea1609f655a43251bf41757aa44e5350a8f
Version <
e93ab401da4b2e2c1b8ef2424de2f238d51c8b2d
Status
affected
Version
bb7e3a019b52d829949d02b64ebab37838148fbf
Status
affected
Version
061a18239ced5eb086967a2b4451cb1cc5ce0702
Status
affected
Version
2a1ddddba6541143c8f73962f3021f1789114284
Status
affected
Version
5.10.199
Version <
5.10.258
Status
affected
Version
5.15.136
Version <
5.15.209
Status
affected
Version
6.1.59
Version <
6.1.175
Status
affected
Version
4.19.297
Version <
4.20
Status
affected
Version
5.4.259
Version <
5.5
Status
affected
Version
6.5.8
Version <
6.6
Status
affected
HerstellerLinux
≫
Produkt
Linux
Default Statusaffected
Version
6.6
Status
affected
Version
0
Version <
6.6
Status
unaffected
Version <=
5.10.*
Version
5.10.258
Status
unaffected
Version <=
5.15.*
Version
5.15.209
Status
unaffected
Version <=
6.1.*
Version
6.1.175
Status
unaffected
Version <=
6.6.*
Version
6.6.141
Status
unaffected
Version <=
6.12.*
Version
6.12.91
Status
unaffected
Version <=
6.18.*
Version
6.18.33
Status
unaffected
Version <=
7.0.*
Version
7.0.10
Status
unaffected
Version <=
*
Version
7.1
Status
unaffected
VulnDex Vulnerability Enrichment
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.13% | 0.029 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | 7.8 | 1.8 | 5.9 |
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
|
https://git.kernel.org/stable/c/2bdc80f4619411e5bd4a3ef23f51e14021ed457c
https://git.kernel.org/stable/c/f9438cb8c8ec3adc84b2b450a3aab0123d074c3b
https://git.kernel.org/stable/c/ac8a2e0d287ebf35e5d7e51e260b4e146648ba4a
https://git.kernel.org/stable/c/6678dde265708003c2b42551af4a2e3cb05decd5
https://git.kernel.org/stable/c/61e25f664dc2a08299e07d84c85776abc2350f75
https://git.kernel.org/stable/c/fdd424d7c35633ac577fd87d1b043d1b8a6cd350
https://git.kernel.org/stable/c/82cbdb4c1ebb5ea7d7bd45c18d3483b5bd32ebc1
https://git.kernel.org/stable/c/e93ab401da4b2e2c1b8ef2424de2f238d51c8b2d