Skip to main content

Linux Kernel EUVDEUVD-2026-32365

| CVE-2026-45899 MEDIUM
2026-05-27 416baaa9-dc9f-4396-8d5f-8c081fb06d67 GHSA-fm97-7qpp-598c
5.5
CVSS 3.1 · NVD
Share

Severity by source

NVD PRIMARY
5.5 MEDIUM
AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
vuln.today AI
5.5 MEDIUM

Local vector and low-privilege match ext4 requiring authenticated filesystem access; A:H reflects kernel crash potential; no confidentiality or integrity impact per description.

3.1 AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
4.0 AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
SUSE
MEDIUM
qualitative
Red Hat
7.0 MEDIUM
qualitative

Primary rating from NVD.

CVSS VectorNVD

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Attack Vector
Local
Attack Complexity
Low
Privileges Required
Low
User Interaction
None
Scope
Unchanged
Confidentiality
None
Integrity
None
Availability
High

Lifecycle Timeline

5
Analysis Generated
Jun 25, 2026 - 21:34 vuln.today
CVSS changed
Jun 25, 2026 - 21:22 NVD
5.5 (MEDIUM)
Patch available
May 27, 2026 - 19:46 EUVD
CVE Published
May 27, 2026 - 14:17 nvd
UNKNOWN (no severity yet)
CVE Published
May 27, 2026 - 14:17 nvd
MEDIUM 5.5

DescriptionNVD

In the Linux kernel, the following vulnerability has been resolved:

ext4: drop extent cache when splitting extent fails

When the split extent fails, we might leave some extents still being processed and return an error directly, which will result in stale extent entries remaining in the extent status tree. So drop all of the remaining potentially stale extents if the splitting fails.

AnalysisAI

Availability impact via stale extent cache corruption in the Linux kernel's ext4 filesystem driver allows a local low-privileged user to trigger a kernel denial-of-service condition. When an ext4 extent-splitting operation fails mid-execution, stale entries are left in the extent status tree, which can cause subsequent filesystem operations to crash the kernel. No public exploit exists and EPSS probability sits at 0.02% (7th percentile), reflecting this as a stability bug rather than a targeted attack vector. Vendor-released patches are available across all active stable branches.

Technical ContextAI

The affected component is the ext4 extent status tree, a radix-tree-based in-memory cache that maps logical block ranges to physical extents for efficient extent lookups. When an extent-splitting operation (used during write or truncate paths) fails after partially modifying tree state, the cleanup path previously did not drop affected extent entries from the cache. This left logically inconsistent entries in the status tree that could be used by subsequent block mapping operations, potentially triggering a kernel BUG() or NULL dereference. The root cause is incomplete cleanup on error paths - semantically matching CWE-459 (Incomplete Cleanup) even though no CWE is formally assigned. Affected products span all Linux kernel stable branches from the initial git commit (1da177e4c3f41524e886b7f1b8a0c1fc7321cac2) through the fixed versions, per CPE cpe:2.3:o:linux:linux_kernel.

RemediationAI

The primary remediation is to upgrade to a patched Linux kernel version: 5.10.253, 5.15.203, 6.6.130, 6.12.75, 6.18.14, 6.19.4, or 7.0 (or later in each respective stable series). Upstream fix commits are available at https://git.kernel.org/stable/c/120c6bd7ca9d3e80a968b758cbb3fbd67570f132 (5.10 branch), https://git.kernel.org/stable/c/6e54f8dfee359bbd58086c883ea8cffd5312999d, https://git.kernel.org/stable/c/337506dc652383c80839edb8d8dcdd8ff2129b4f, https://git.kernel.org/stable/c/808f3191498f300174523c54cab101e18795ae4e, https://git.kernel.org/stable/c/79b592e8f1b435796cbc2722190368e3e8ffd7a1, https://git.kernel.org/stable/c/31bf37cf53ede8145e2bc62da803d4506da92975, and https://git.kernel.org/stable/c/dc7c9b9d03a59a7fe483574531327e650a4b4adc. As a workaround for systems that cannot immediately be patched, mounting ext4 filesystems with the 'nodelalloc' option reduces the likelihood of triggering delayed allocation extent splits, though this has a performance trade-off and is not a guaranteed mitigation. Restricting untrusted local user access to writable ext4 filesystems reduces exposure in multi-tenant environments.

Vendor StatusVendor

SUSE

Severity: Moderate
Product Status
SUSE Linux Enterprise Desktop 15 SP7 Affected
SUSE Linux Enterprise Desktop 15 SP7 Affected
SUSE Linux Enterprise High Availability Extension 15 SP7 Affected
SUSE Linux Enterprise High Availability Extension 15 SP7 Affected
SUSE Linux Enterprise High Performance Computing 15 SP7 Affected

Share

EUVD-2026-32365 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy