-

CVE-2026-53126

blk-cgroup: fix disk reference leak in blkcg_maybe_throttle_current()

In the Linux kernel, the following vulnerability has been resolved:

blk-cgroup: fix disk reference leak in blkcg_maybe_throttle_current()

Add the missing put_disk() on the error path in
blkcg_maybe_throttle_current(). When blkcg lookup, blkg lookup, or
blkg_tryget() fails, the function jumps to the out label which only
calls rcu_read_unlock() but does not release the disk reference acquired
by blkcg_schedule_throttle() via get_device(). Since current->throttle_disk
is already set to NULL before the lookup, blkcg_exit() cannot release
this reference either, causing the disk to never be freed.

Restore the reference release that was present as blk_put_queue() in the
original code but was inadvertently dropped during the conversion from
request_queue to gendisk.
Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).
HerstellerLinux
Produkt Linux
Default Statusunaffected
Version f05837ed73d0c73e950b2d9f2612febb0d3d451e
Version < 4048ed98860d3785645ebbd34f69566a6c7320c3
Status affected
Version f05837ed73d0c73e950b2d9f2612febb0d3d451e
Version < 73a5af059905d171b398c8b2381632ee499948b5
Status affected
Version f05837ed73d0c73e950b2d9f2612febb0d3d451e
Version < b3e005f16cd98f815429a87aef4c61e9c140779f
Status affected
Version f05837ed73d0c73e950b2d9f2612febb0d3d451e
Version < 000e8454692cab9d1f1b80130e2870e355301d06
Status affected
Version f05837ed73d0c73e950b2d9f2612febb0d3d451e
Version < 23308af722fefed00af5f238024c11710938fba3
Status affected
HerstellerLinux
Produkt Linux
Default Statusaffected
Version 6.3
Status affected
Version 0
Version < 6.3
Status unaffected
Version <= 6.6.*
Version 6.6.141
Status unaffected
Version <= 6.12.*
Version 6.12.91
Status unaffected
Version <= 6.18.*
Version 6.18.33
Status unaffected
Version <= 7.0.*
Version 7.0.10
Status unaffected
Version <= *
Version 7.1
Status unaffected
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. Login Login
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.16% 0.052
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
Es wurden noch keine Informationen zu CWE veröffentlicht.
https://git.kernel.org/stable/c/4048ed98860d3785645ebbd34f69566a6c7320c3
https://git.kernel.org/stable/c/73a5af059905d171b398c8b2381632ee499948b5
https://git.kernel.org/stable/c/b3e005f16cd98f815429a87aef4c61e9c140779f
https://git.kernel.org/stable/c/000e8454692cab9d1f1b80130e2870e355301d06
https://git.kernel.org/stable/c/23308af722fefed00af5f238024c11710938fba3