CVE-2026-23053

Linux Kernel - Deadlock in NFSv4.1 State Recovery via nfs_release_folio()

Title source: llm

Description

In the Linux kernel, the following vulnerability has been resolved: NFS: Fix a deadlock involving nfs_release_folio() Wang Zhaolong reports a deadlock involving NFSv4.1 state recovery waiting on kthreadd, which is attempting to reclaim memory by calling nfs_release_folio(). The latter cannot make progress due to state recovery being needed. It seems that the only safe thing to do here is to kick off a writeback of the folio, without waiting for completion, or else kicking off an asynchronous commit.

References (4)

Core 4

Core References

https://git.kernel.org/stable/c/a4810f8beb0122f032f10735f98d257aa6064f4c

Patch

https://git.kernel.org/stable/c/49d352bc263fe4a834233338bfaad31b3109addf

Patch

https://git.kernel.org/stable/c/19b4d9ab5e77843eac0429c019470c02f8710b55

Patch

https://git.kernel.org/stable/c/cce0be6eb4971456b703aaeafd571650d314bcca

Scores

EPSS 0.0003

EPSS Percentile 7.8%

Details

Status published

Products (14)

linux/Kernel 6.13.0 - 6.18.7linux

linux/Kernel 6.3.0 - 6.12.67linux

linux/Kernel 6.3.0 - 6.6.130linux

linux/Kernel 6.7.0 - 6.12.67linux

Linux/Linux < 6.3

Linux/Linux 6.12.67 - 6.12.*

Linux/Linux 6.18.7 - 6.18.*

Linux/Linux 6.19

Linux/Linux 6.3

Linux/Linux 6.6.130 - 6.6.*

... and 4 more

Published Feb 04, 2026

Tracked Since Feb 18, 2026