CVE-2026-46051

216.73.216.233

· Published 27/05/2026 16:17 · Modified 27/05/2026 14:48 · Author: The MITRE Corporation

Labels: CVE-2026-46051 2026-05-27 416baaa9-dc9f-4396-8d5f-8c081fb06d67 CVE-2026-46051

Essential information

Published: 27/05/2026 16:17
Modified: 27/05/2026 14:48
Author: The MITRE Corporation
Creator: The MITRE Corporation
CVSS: 5.5 MEDIUM (v3.1)
CISA KEV: No
CWE: CWE-667
EPSS (First): P7.4% ?EPSS percentile: rank of this vulnerability versus all others. Higher percentile = more likely to be exploited. Learn more (score 0.00176)
CVSS vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

CVSS metrics

Description

In the Linux kernel, the following vulnerability has been resolved: md/raid5: fix soft lockup in retry_aligned_read() When retry_aligned_read() encounters an overlapped stripe, it releases the stripe via raid5_release_stripe() which puts it on the lockless released_stripes llist. In the next raid5d loop iteration, release_stripe_list() drains the stripe onto handle_list (since STRIPE_HANDLE is set by the original IO), but retry_aligned_read() runs before handle_active_stripes() and removes the stripe from handle_list via find_get_stripe() -> list_del_init(). This prevents handle_stripe() from ever processing the stripe to resolve the overlap, causing an infinite loop and soft lockup. Fix this by using __release_stripe() with temp_inactive_list instead of raid5_release_stripe() in the failure path, so the stripe does not go through the released_stripes llist. This allows raid5d to break out of its loop, and the overlap will be resolved when the stripe is eventually processed by handle_stripe().

NVD status

Status: Awaiting Analysis — CVE has been marked for Analysis. Normally once in this state the CVE will be analyzed by NVD staff within 24 hours.
Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67
NVD: View on NVD

Affected products (CPE)

Product	CPE
linux / linux kernel	`cpe:2.3:o:linux:linux_kernel::::::::`