CVE-2026-31556 xfs: scrub: unlock dquot before early return in quota scrub

🗓️ 24 Apr 2026 14:35:39Reported by LinuxType

Fixes early return in quota scrub that could leave the quota lock held, risking deadlocks.

Reporter	Title	Published	Views	Family All 22
AstraLinux	Astra Linux - уязвимость в linux-5.10	20 May 202605:53	–	astralinux
CNNVD	Linux kernel 安全漏洞	24 Apr 202600:00	–	cnnvd
CVE	CVE-2026-31556	24 Apr 202614:35	–	cve
Debian	[SECURITY] [DSA 6238-1] linux security update	30 Apr 202620:05	–	debian
Debian CVE	CVE-2026-31556	24 Apr 202614:35	–	debiancve
Tenable Nessus	Debian dsa-6238 : ata-modules-6.12.74+deb13+1-armmp-di - security update	30 Apr 202600:00	–	nessus
Tenable Nessus	SUSE SLES16 Security Update : kernel (SUSE-SU-2026:22099-1)	20 Jun 202600:00	–	nessus
Tenable Nessus	SUSE SLES16 Security Update : kernel (SUSE-SU-2026:22127-1)	20 Jun 202600:00	–	nessus
Tenable Nessus	Linux Distros Unpatched Vulnerability : CVE-2026-31556	24 Apr 202600:00	–	nessus
EUVD	EUVD-2026-25449	24 Apr 202614:35	–	euvd

[
  {
    "product": "Linux",
    "vendor": "Linux",
    "defaultStatus": "unaffected",
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "programFiles": [
      "fs/xfs/scrub/quota.c"
    ],
    "versions": [
      {
        "version": "7d1f0e167a067ed741dec08b7614d76893422b04",
        "lessThan": "e822f535273af0e8968eab7acc0cea0b90dd25af",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "7d1f0e167a067ed741dec08b7614d76893422b04",
        "lessThan": "3b0c3414b308e6822cda90bf99f7eac94d4cca2b",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "7d1f0e167a067ed741dec08b7614d76893422b04",
        "lessThan": "d128fc0c5c2b19224927d4fd2a46c2fe6a1f606f",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "7d1f0e167a067ed741dec08b7614d76893422b04",
        "lessThan": "268378b6ad20569af0d1957992de1c8b16c6e900",
        "status": "affected",
        "versionType": "git"
      }
    ]
  },
  {
    "product": "Linux",
    "vendor": "Linux",
    "defaultStatus": "affected",
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "programFiles": [
      "fs/xfs/scrub/quota.c"
    ],
    "versions": [
      {
        "version": "6.8",
        "status": "affected"
      },
      {
        "version": "0",
        "lessThan": "6.8",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "6.12.80",
        "lessThanOrEqual": "6.12.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "6.18.21",
        "lessThanOrEqual": "6.18.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "6.19.11",
        "lessThanOrEqual": "6.19.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "7.0",
        "lessThanOrEqual": "*",
        "status": "unaffected",
        "versionType": "original_commit_for_fix"
      }
    ]
  }
]

Source	Link
git	www.git.kernel.org/stable/c/d128fc0c5c2b19224927d4fd2a46c2fe6a1f606f
git	www.git.kernel.org/stable/c/e822f535273af0e8968eab7acc0cea0b90dd25af
git	www.git.kernel.org/stable/c/3b0c3414b308e6822cda90bf99f7eac94d4cca2b
git	www.git.kernel.org/stable/c/268378b6ad20569af0d1957992de1c8b16c6e900

11 May 2026 22:11Current

EPSS0.00122