Detections
Analytics

CVE-2026-53063

high

Description

In the Linux kernel, the following vulnerability has been resolved: dm cache: fix write hang in passthrough mode The invalidate_remove() function has incomplete logic for handling write hit bios after cache invalidation. It sets up the remapping for the overwrite_bio but then drops it immediately without submission, causing write operations to hang. Fix by adding a new invalidate_committed() continuation that submits the remapped writes to the cache origin after metadata commit completes, while using the overwrite_endio hook to ensure proper completion sequencing. This maintains existing coherency. Also improve error handling in invalidate_complete() to preserve the original error status instead of using bio_io_error() unconditionally.

References

https://git.kernel.org/stable/c/ecb10c193cbebf5e6984246a9b4ff1f95d45ed87

https://git.kernel.org/stable/c/b8ace9e96983abb20ccf39edce8a60f1bb0b83d8

https://git.kernel.org/stable/c/9fa18d0b981776b190ca4632942a7c2174052b78

https://git.kernel.org/stable/c/64d6519b00be4116d365bd31f33a5e5ce2944c1a

https://git.kernel.org/stable/c/4ca8b8bd952df7c3ccdc68af9bd3419d0839a04b

https://git.kernel.org/stable/c/05798d091ebcfb6d68228890e593f209e8ac940d

Details

Source: Mitre, NVD

Published: 2026-06-24

Updated: 2026-06-24

Risk Information

CVSS v2

Base Score: 3.6

Vector: CVSS2#AV:L/AC:L/Au:N/C:N/I:P/A:P

Severity: Low

CVSS v3

Base Score: 7.1

Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H

Severity: High

EPSS

EPSS: 0.0018