Description
In the Linux kernel, the following vulnerability has been resolved:

xfs: scrub: unlock dquot before early return in quota scrub

xchk_quota_item can return early after calling xchk_fblock_process_error.
When that helper returns false, the function returned immediately without
dropping dq->q_qlock, which can leave the dquot lock held and risk lock
leaks or deadlocks in later quota operations.

Fix this by unlocking dq->q_qlock before the early return.
Published: 2026-04-24
Score: 5.5 Medium
EPSS: < 1% Very Low
KEV: No
Impact: Potential lock leaks or deadlocks in quota operations
Action: Patch
AI Analysis

Impact

In the Linux kernel XFS filesystem, a missing release of the dquot lock during quota scrub operations can leave the lock held when an error occurs early in the scrub. This lock leak can lead to deadlocks or resource exhaustion in later quota management activities, impacting system availability rather than confidentiality or integrity.

Affected Systems

All Linux kernels that enable XFS quota support are vulnerable, including kernel 6.8 and all 7.0 release candidates (rc1 through rc7). Kernels that are compiled without XFS or without quota support are not affected. The vulnerability affects the core quota subsystem and is present until the kernel patch that unlocks the lock before early return.

Risk and Exploitability

The CVSS score of 5.5 indicates a moderate severity incident, and the EPSS score of less than 1% suggests a very low probability of exploitation. The vulnerability is not listed in the CISA KEV catalog, further indicating low prevalence. Based on the description, it is inferred that an attacker would need to trigger a quota error while operating on an XFS filesystem, which at minimum requires local access or root privileges. While feasible in a controlled or privileged environment, the limited attack surface and low exploitation likelihood reduce the overall risk compared to higher‑impact flaws.

Generated by OpenCVE AI on April 28, 2026 at 20:19 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade to a patched Linux kernel version that includes the dquot unlock fix, such as the latest stable release of 6.8 or a 7.0 release after the patch.
  • Reboot the system to load the updated kernel and ensure that the XFS quota scrub functions normally.
  • If a kernel upgrade cannot be performed immediately, disable XFS quota enforcement on affected filesystems by remounting them without the "usrquota"/"grpquota" options or by unsetting quota enforcement, thereby preventing the early return condition from occurring as a temporary mitigation.

Generated by OpenCVE AI on April 28, 2026 at 20:19 UTC.

Tracking

Sign in to view the affected projects.

Advisories
Source ID Title
Debian DSA Debian DSA DSA-6238-1 linux security update
History

Mon, 27 Apr 2026 20:15:00 +0000

Type Values Removed Values Added
Weaknesses NVD-CWE-noinfo
CPEs cpe:2.3:o:linux:linux_kernel:6.8:-:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:7.0:rc1:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:7.0:rc2:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:7.0:rc3:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:7.0:rc4:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:7.0:rc5:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:7.0:rc6:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:7.0:rc7:*:*:*:*:*:*

Sat, 25 Apr 2026 00:15:00 +0000

Type Values Removed Values Added
Weaknesses CWE-772
References
Metrics threat_severity

None

 cvssV3_1

{'score': 5.5, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H'}

threat_severity

Low

Fri, 24 Apr 2026 15:00:00 +0000

Type Values Removed Values Added
Description In the Linux kernel, the following vulnerability has been resolved: xfs: scrub: unlock dquot before early return in quota scrub xchk_quota_item can return early after calling xchk_fblock_process_error. When that helper returns false, the function returned immediately without dropping dq->q_qlock, which can leave the dquot lock held and risk lock leaks or deadlocks in later quota operations. Fix this by unlocking dq->q_qlock before the early return.
Title xfs: scrub: unlock dquot before early return in quota scrub
First Time appeared Linux
Linux linux Kernel
CPEs cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Vendors & Products Linux
Linux linux Kernel
References

Subscriptions

Linux Linux Kernel
cve-icon MITRE

Status: PUBLISHED

Assigner: Linux

Published:

Updated: 2026-05-11T22:11:04.289Z

Reserved: 2026-03-09T15:48:24.115Z

Link: CVE-2026-31556

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Analyzed

Published: 2026-04-24T15:16:29.977

Modified: 2026-04-27T20:14:18.343

Link: CVE-2026-31556

cve-icon Redhat

Severity : Low

Publid Date: 2026-04-24T00:00:00Z

Links: CVE-2026-31556 - Bugzilla

cve-icon OpenCVE Enrichment

Updated: 2026-04-28T20:30:06Z

Weaknesses