CVE-2026-46327

HIGH

dm: fix unlocked test for dm_suspended_md

Title source: cna
STIX 2.1

Description

In the Linux kernel, the following vulnerability has been resolved: dm: fix unlocked test for dm_suspended_md The function dm_blk_report_zones tests if the device is suspended with the "dm_suspended_md" call. However, this function is called without holding any locks, so the device may be suspended just after it. Move the call to dm_suspended_md after dm_get_live_table, so that the device can't be suspended after the suspended state was tested.

Scores

CVSS v3 7.8
EPSS 0.0012
EPSS Percentile 2.2%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Details

Status published
Products (17)
linux/Kernel < 6.12.75linux
linux/Kernel 6.13.0 - 6.18.14linux
linux/Kernel 6.16.0 - 6.19.4linux
Linux/Linux < 6.16
Linux/Linux 37f53a2c60d03743e0eacf7a0c01c279776fef4e - 24c405fdbe215c45e57bba672cc42859038491ee
Linux/Linux 37f53a2c60d03743e0eacf7a0c01c279776fef4e - 7a3385e97af2b6f485fef11e82d8c29adee4be93
Linux/Linux 37f53a2c60d03743e0eacf7a0c01c279776fef4e - d809a36692ee1394cac85ce6ba7cf8ea58da5812
Linux/Linux 6.12.34 - 6.12.75
Linux/Linux 6.12.75 - 6.12.*
Linux/Linux 6.15.3 - 6.16
... and 7 more
Published Jun 09, 2026
Tracked Since Jun 09, 2026