CVE Catalog

CVE-2026-53048

Unknown
Published: Translated: NVD NIST

Summary

A vulnerability has been identified in the Linux kernel that may lead to a NULL pointer dereference during the unmounting of the gfs2 filesystem. This issue has been resolved by adding appropriate checks in the gfs2_log_flush function and fixing the dereference in gfs2_log_release.

Risk Assessment

Organizations may be exposed to system crashes or unexpected behavior of applications using the gfs2 filesystem, potentially leading to data loss or downtime.

Recommendation

It is recommended to update the Linux kernel to the latest version to mitigate this vulnerability and conduct testing to ensure system stability post-update.

Original NVD description (English source)

In the Linux kernel, the following vulnerability has been resolved: gfs2: prevent NULL pointer dereference during unmount When flushing out outstanding glock work during an unmount, gfs2_log_flush() can be called when sdp->sd_jdesc has already been deallocated and sdp->sd_jdesc is NULL. Commit 35264909e9d1 ("gfs2: Fix NULL pointer dereference in gfs2_log_flush") added a check for that to gfs2_log_flush() itself, but it missed the sdp->sd_jdesc dereference in gfs2_log_release(). Fix that.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS