CVE-2026-53048

Summary

In the Linux kernel, the following vulnerability has been resolved:

gfs2: prevent NULL pointer dereference during unmount

When flushing out outstanding glock work during an unmount, gfs2_log_flush() can be called when sdp->sd_jdesc has already been deallocated and sdp->sd_jdesc is NULL. Commit 35264909e9d1 ("gfs2: Fix NULL pointer dereference in gfs2_log_flush") added a check for that to gfs2_log_flush() itself, but it missed the sdp->sd_jdesc dereference in gfs2_log_release(). Fix that.

Affected Software

VendorProductVersion RangeStatus
LinuxLinuxc3c5cfa3170c0940bc66a142859caac07d19b9d6 < cec55674354794eddb80b914f73a6bf9b7fc304aaffected
LinuxLinux5f6a84cfb33b34610623857bd93919dcb661e29b < 2fc4c868c9060f424fd4a7cacb0aec5082aba4deaffected
LinuxLinux3429ef5f50909cee9e498c50f0c499b9397116ce < 233a0945a4b1dbe3f38c30afb7d05b76c67f1193affected
LinuxLinux35264909e9d1973ab9aaa2a1b07cda70f12bb828 < e15f16761594e80b15776980b27c35477655a135affected
LinuxLinux35264909e9d1973ab9aaa2a1b07cda70f12bb828 < d8ffae016c4a78693fe1283335d0b6833a9c1366affected
LinuxLinux35264909e9d1973ab9aaa2a1b07cda70f12bb828 < abd73229f0e886a91a16ea781ab656bd9b4d1ee8affected
LinuxLinux35264909e9d1973ab9aaa2a1b07cda70f12bb828 < 74b4dbb946060a3233604d91859a9abd3708141daffected
LinuxLinuxf54f9d5368a4e92ede7dd078a62788dae3a7c6efaffected
LinuxLinux5.15.200 < 5.15.209affected
LinuxLinux6.1.162 < 6.1.175affected
LinuxLinux6.6.37 < 6.6.141affected
LinuxLinux6.9.8 < 6.10affected
LinuxLinux6.10affected
LinuxLinux0 < 6.10unaffected
LinuxLinux5.15.209 <= 5.15.*unaffected
LinuxLinux6.1.175 <= 6.1.*unaffected
LinuxLinux6.6.141 <= 6.6.*unaffected
LinuxLinux6.12.91 <= 6.12.*unaffected
LinuxLinux6.18.33 <= 6.18.*unaffected
LinuxLinux7.0.10 <= 7.0.*unaffected
LinuxLinux7.1 <= *unaffected

Weaknesses

References