Description
In the Linux kernel, the following vulnerability has been resolved:

blk-cgroup: fix disk reference leak in blkcg_maybe_throttle_current()

Add the missing put_disk() on the error path in
blkcg_maybe_throttle_current(). When blkcg lookup, blkg lookup, or
blkg_tryget() fails, the function jumps to the out label which only
calls rcu_read_unlock() but does not release the disk reference acquired
by blkcg_schedule_throttle() via get_device(). Since current->throttle_disk
is already set to NULL before the lookup, blkcg_exit() cannot release
this reference either, causing the disk to never be freed.

Restore the reference release that was present as blk_put_queue() in the
original code but was inadvertently dropped during the conversion from
request_queue to gendisk.
Published: 2026-06-24
Score: 5.5 Medium
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

The flaw resides in the Linux kernel’s blkcg_maybe_throttle_current() function, where a missing put_disk() call on the error path prevents the release of a disk reference that was previously acquired by the blkcg_schedule_throttle() routine. As a result, the disk reference count is never decremented when a block‑cgroup lookup fails, causing the disk object to remain allocated indefinitely. This resource leak has the potential to exhaust kernel memory or degrade disk performance over time.

Affected Systems

All Linux kernels that include the buggy blkcg_maybe_throttle_current() logic are potentially impacted. The CNA affected‑vendor record lists the Linux kernel generically, and no specific version or patch level is indicated, so any system running a kernel version before the fix commit may be at risk.

Risk and Exploitability

The reported CVSS score is 5.5, indicating a medium severity vulnerability. EPSS information is unavailable, and the issue does not appear in the CISA KEV catalog, so the likelihood of exploitation is unknown. Because the defect lies in kernel code, an attacker would need privileged or kernel‑level access or an additional vulnerability to trigger the fault path. This inference is based on the kernel location of the bug and is not explicitly stated in the advisory.

Generated by OpenCVE AI on June 25, 2026 at 02:24 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade the Linux kernel to a version that includes the blkcg_maybe_throttle_current() patch restoring the missing put_disk() call.
  • Reboot the system to load the updated kernel and activate the fix.
  • Verify that no disk reference leaks occur by monitoring kernel logs and disk usage statistics after the update.

Generated by OpenCVE AI on June 25, 2026 at 02:24 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Thu, 25 Jun 2026 00:15:00 +0000

Type Values Removed Values Added
References
Metrics threat_severity

None

cvssV3_1

{'score': 5.5, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H'}

threat_severity

Low


Wed, 24 Jun 2026 20:15:00 +0000

Type Values Removed Values Added
Weaknesses CWE-772

Wed, 24 Jun 2026 17:15:00 +0000

Type Values Removed Values Added
Description In the Linux kernel, the following vulnerability has been resolved: blk-cgroup: fix disk reference leak in blkcg_maybe_throttle_current() Add the missing put_disk() on the error path in blkcg_maybe_throttle_current(). When blkcg lookup, blkg lookup, or blkg_tryget() fails, the function jumps to the out label which only calls rcu_read_unlock() but does not release the disk reference acquired by blkcg_schedule_throttle() via get_device(). Since current->throttle_disk is already set to NULL before the lookup, blkcg_exit() cannot release this reference either, causing the disk to never be freed. Restore the reference release that was present as blk_put_queue() in the original code but was inadvertently dropped during the conversion from request_queue to gendisk.
Title blk-cgroup: fix disk reference leak in blkcg_maybe_throttle_current()
First Time appeared Linux
Linux linux Kernel
CPEs cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Vendors & Products Linux
Linux linux Kernel
References

Subscriptions

Linux Linux Kernel
cve-icon MITRE

Status: PUBLISHED

Assigner: Linux

Published:

Updated: 2026-06-24T16:30:54.594Z

Reserved: 2026-06-09T07:44:35.386Z

Link: CVE-2026-53126

cve-icon Vulnrichment

No data.

cve-icon NVD

No data.

cve-icon Redhat

Severity : Low

Publid Date: 2026-06-24T00:00:00Z

Links: CVE-2026-53126 - Bugzilla

cve-icon OpenCVE Enrichment

Updated: 2026-06-25T03:30:17Z

Weaknesses
  • CWE-772

    Missing Release of Resource after Effective Lifetime