CVE-2026-45953

Source
https://cve.org/CVERecord?id=CVE-2026-45953
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-45953.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2026-45953
Downstream
Published
2026-05-27T12:18:09.203Z
Modified
2026-07-08T08:09:39.920743216Z
Summary
md/raid5: fix IO hang with degraded array with llbitmap
Details

In the Linux kernel, the following vulnerability has been resolved:

md/raid5: fix IO hang with degraded array with llbitmap

When llbitmap bit state is still unwritten, any new write should force rcw, as bitmapops->blockssynced() is checked in handlestripedirtying(). However, later the same check is missing in needthisblock(), causing stripe to deadloop during handling because handlestripe() will decide to go to handlestripefill(), meanwhile needthis_block() always return 0 and nothing is handled.

Database specific
{
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/45xxx/CVE-2026-45953.json",
    "cna_assigner": "Linux"
}
References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
5ab829f1971dc99f2aac10846c378e67fc875abc
Fixed
870b9f15867b0e70f3459ef3974b043e8b229690
Fixed
28ef299e7a5b81817f8ca8297c2ddff28f5da5e8
Fixed
cd1635d844d26471c56c0a432abdee12fc9ad735

Database specific

source
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-45953.json"

Linux / Kernel

Package

Name
Kernel

Affected ranges

Type
ECOSYSTEM
Events
Introduced
6.18.0
Fixed
6.18.14
Type
ECOSYSTEM
Events
Introduced
6.19.0
Fixed
6.19.4

Database specific

source
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-45953.json"