CVE-2026-46327

Summary

In the Linux kernel, the following vulnerability has been resolved:

dm: fix unlocked test for dm_suspended_md

The function dm_blk_report_zones tests if the device is suspended with the "dm_suspended_md" call. However, this function is called without holding any locks, so the device may be suspended just after it.

Move the call to dm_suspended_md after dm_get_live_table, so that the device can't be suspended after the suspended state was tested.

Affected Software

VendorProductVersion RangeStatus
LinuxLinuxf9c1bdf24615303d48a2d0fd629c88f3189563aa < 175ac0a6115400278d3900f5a04a58b17b3f6cd0affected
LinuxLinux37f53a2c60d03743e0eacf7a0c01c279776fef4e < 7a3385e97af2b6f485fef11e82d8c29adee4be93affected
LinuxLinux37f53a2c60d03743e0eacf7a0c01c279776fef4e < d809a36692ee1394cac85ce6ba7cf8ea58da5812affected
LinuxLinux37f53a2c60d03743e0eacf7a0c01c279776fef4e < 24c405fdbe215c45e57bba672cc42859038491eeaffected
LinuxLinuxd19bc1b4dd5f322980b1f05f79b2ea4f0db10920affected
LinuxLinux6.12.34 < 6.12.75affected
LinuxLinux6.15.3 < 6.16affected
LinuxLinux6.16affected
LinuxLinux0 < 6.16unaffected
LinuxLinux6.12.75 <= 6.12.*unaffected
LinuxLinux6.18.14 <= 6.18.*unaffected
LinuxLinux6.19.4 <= 6.19.*unaffected
LinuxLinux7.0 <= *unaffected

Weaknesses

References