CVE-2026-46327

Published: Jun 9, 2026Modified: Jun 14, 2026

7.8

Vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Exploitability: 1.8 / Impact: 5.9

Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67 (Secondary)

Description

In the Linux kernel, the following vulnerability has been resolved: dm: fix unlocked test for dm_suspended_md The function dm_blk_report_zones tests if the device is suspended with the "dm_suspended_md" call. However, this function is called without holding any locks, so the device may be suspended just after it. Move the call to dm_suspended_md after dm_get_live_table, so that the device can't be suspended after the suspended state was tested.

References (4)

https://git.kernel.org/stable/c/175ac0a6115400278d3900f5a04a58b17b3f6cd0

Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67

https://git.kernel.org/stable/c/24c405fdbe215c45e57bba672cc42859038491ee

Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67

https://git.kernel.org/stable/c/7a3385e97af2b6f485fef11e82d8c29adee4be93

Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67

https://git.kernel.org/stable/c/d809a36692ee1394cac85ce6ba7cf8ea58da5812

Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67

Timeline

No history available yet.