CVE-2026-53327
N/A
N/A
Summary
In the Linux kernel, the following vulnerability has been resolved:
debugobjects: Do not fill_pool() if pi_blocked_on
On RT enabled kernels, fill_pool() ends up calling rtlock_lock(), which asserts if current::pi_blocked_on is set, because a task can obviously only block on one lock as otherwise the priority inheritenace chain gets corrupted.
Prevent this by expanding the conditional to take current::pi_blocked_on into account.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Linux | Linux | 4bedcc28469a24fe481a8a31b3584e6070457ddb < 8a680d54f1adf3e3aa815578684556716fda6f0c | affected |
| Linux | Linux | 4bedcc28469a24fe481a8a31b3584e6070457ddb < a3383df76f0d7a597066df018409eb9e5e698064 | affected |
| Linux | Linux | 4bedcc28469a24fe481a8a31b3584e6070457ddb < 3f6a3b24ab7b9d51f6f4778254bef0e5847beb55 | affected |
| Linux | Linux | 4bedcc28469a24fe481a8a31b3584e6070457ddb < 3a408cae608d9c075dd3a9e5cfc03b3cb0726863 | affected |
| Linux | Linux | 4bedcc28469a24fe481a8a31b3584e6070457ddb < 33bee10644f8fff3b1a0187ad5ad34513e5e8e72 | affected |
| Linux | Linux | 4bedcc28469a24fe481a8a31b3584e6070457ddb < 5f41161059fd0f1bbf18c90f3180e38cc45a14eb | affected |
| Linux | Linux | 5.15 | affected |
| Linux | Linux | 0 < 5.15 | unaffected |
| Linux | Linux | 6.1.177 <= 6.1.* | unaffected |
| Linux | Linux | 6.6.144 <= 6.6.* | unaffected |
| Linux | Linux | 6.12.95 <= 6.12.* | unaffected |
| Linux | Linux | 6.18.37 <= 6.18.* | unaffected |
| Linux | Linux | 7.0.13 <= 7.0.* | unaffected |
| Linux | Linux | 7.1 <= * | unaffected |
Weaknesses
References
- https://git.kernel.org/stable/c/8a680d54f1adf3e3aa815578684556716fda6f0c
- https://git.kernel.org/stable/c/a3383df76f0d7a597066df018409eb9e5e698064
- https://git.kernel.org/stable/c/3f6a3b24ab7b9d51f6f4778254bef0e5847beb55
- https://git.kernel.org/stable/c/3a408cae608d9c075dd3a9e5cfc03b3cb0726863
- https://git.kernel.org/stable/c/33bee10644f8fff3b1a0187ad5ad34513e5e8e72
- https://git.kernel.org/stable/c/5f41161059fd0f1bbf18c90f3180e38cc45a14eb
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.