CVE-2026-45955

Published: May 27, 2026

Modified: Jun 5, 2026

PUBLISHED

CVSS v3.1

7.1

HIGH

Description

In the Linux kernel, the following vulnerability has been resolved: md/md-llbitmap: fix percpu_ref not resurrected on suspend timeout When llbitmap_suspend_timeout() times out waiting for percpu_ref to become zero, it returns -ETIMEDOUT without resurrecting the percpu_ref. The caller (md_llbitmap_daemon_fn) then continues to the next page without calling llbitmap_resume(), leaving the percpu_ref in a killed state permanently. Fix this by resurrecting the percpu_ref before returning the error, ensuring the page control structure remains usable for subsequent operations.

Vendor	Product	Versions
Linux	Linux	affected `5ab829f1971dc99f2aac10846c378e67fc875abc - < 095417d6b669c2dec39a5842ccb94df915f97f54` affected `5ab829f1971dc99f2aac10846c378e67fc875abc - < 2446d099350185caeed19ab2c0270451a97296fb` affected `5ab829f1971dc99f2aac10846c378e67fc875abc - < d119bd2e1643cc023210ff3c6f0657e4f914e71d`
Linux	Linux	affected `6.18` unaffected `0 - < 6.18` unaffected `6.18.14 - <= 6.18.` unaffected `6.19.4 - <= 6.19.` unaffected `7.0 - <= *`

CVSS v3.1 Details

CVSS v3.1 Vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H

Attack Vector

Local

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Unchanged

Confidentiality

None

Integrity

High

Availability

High

References

https://git.kernel.org/stable/c/095417d6b669c2dec39a5842ccb94df915f97f54

https://git.kernel.org/stable/c/2446d099350185caeed19ab2c0270451a97296fb

https://git.kernel.org/stable/c/d119bd2e1643cc023210ff3c6f0657e4f914e71d

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2026-45955

Description

Affected Products

CVSS v3.1 Details

References