Main Vulnerability Database SB20260105109

SB20260105109 - Improper locking in Linux kernel block

Published: January 5, 2026

Security Bulletin ID SB20260105109

Severity

Low

Patch available

YES

Number of vulnerabilities 1

Exploitation vector Local access

Highest impact Denial of service

Breakdown by Severity

Low
Medium
High
Critical

Description

This security bulletin contains information about 1 security vulnerability.

1) Improper locking (CVE-ID: CVE-2025-68756)

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper locking within the blk_mq_quiesce_tagset(), blk_mq_unquiesce_tagset(), blk_mq_del_queue_tag_set() and blk_mq_add_queue_tag_set() functions in block/blk-mq.c. A local user can perform a denial of service (DoS) attack.

Remediation

Install update from vendor's website.

References

https://git.kernel.org/stable/c/3baeec23a82e7ee9691f434c6ab0ab1387326108
https://git.kernel.org/stable/c/59e25ef2b413c72da6686d431e7759302cfccafa
https://git.kernel.org/stable/c/6e8d363786765a81e35083e0909e076796468edf
https://git.kernel.org/stable/c/ef0cd7b694928573f6569e61c14f5f059253162e