CVE-2026-31455
- Source
- https://cve.org/CVERecord?id=CVE-2026-31455
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2026-31455.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2026-31455
- Downstream
- Published
- 2026-04-22T13:53:48.914Z
- Modified
- 2026-05-18T05:59:49.261439004Z
- Summary
- xfs: stop reclaim before pushing AIL during unmount
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
xfs: stop reclaim before pushing AIL during unmount
The unmount sequence in xfsunmountflush_inodes() pushed the AIL while background reclaim and inodegc are still running. This is broken independently of any use-after-free issues - background reclaim and inodegc should not be running while the AIL is being pushed during unmount, as inodegc can dirty and insert inodes into the AIL during the flush, and background reclaim can race to abort and free dirty inodes.
Reorder xfsunmountflushinodes() to stop inodegc and cancel background reclaim before pushing the AIL. Stop inodegc before cancelling mreclaimwork because the inodegc worker can re-queue mreclaimwork via xfsinodegcsetreclaimable.
- Database specific
{ "cna_assigner": "Linux", "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/31xxx/CVE-2026-31455.json" }- References
-
- https://git.kernel.org/stable/c/239d734c00644072862fa833805c4471573b1445
- https://git.kernel.org/stable/c/4f24a767e3d64a5f58c595b5c29b6063a201f1e3
- https://git.kernel.org/stable/c/558e3275d8a3b101be18a7fe7d1634053e9d9b07
- https://git.kernel.org/stable/c/8147e304d7d32fd5c3e943babc296ce2873dc279
- https://git.kernel.org/stable/c/a89434a6188d8430ea31120da96e3e4cefb58686
- https://git.kernel.org/stable/c/bda27fc0b4eb3a425d9a18475c4cb94fbe862c60
- https://git.kernel.org/stable/c/d38135af04a3ad8a585c899d176efc8e97853115
- https://git.kernel.org/stable/c/e6cc490048f78b009259a5f032acead9f789c34c
- https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/31xxx/CVE-2026-31455.json
- https://nvd.nist.gov/vuln/detail/CVE-2026-31455
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected packages
Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected ranges
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced90c60e16401248a4900f3f9387f563d0178dcf34Fixede6cc490048f78b009259a5f032acead9f789c34cFixed239d734c00644072862fa833805c4471573b1445Fixedbda27fc0b4eb3a425d9a18475c4cb94fbe862c60Fixedd38135af04a3ad8a585c899d176efc8e97853115Fixeda89434a6188d8430ea31120da96e3e4cefb58686Fixed8147e304d7d32fd5c3e943babc296ce2873dc279Fixed558e3275d8a3b101be18a7fe7d1634053e9d9b07Fixed4f24a767e3d64a5f58c595b5c29b6063a201f1e3
Linux / Kernel
Package
- Name
- Kernel
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced5.9.0Fixed5.10.253
- Type
- ECOSYSTEM
- Events
-
Introduced5.11.0Fixed5.15.203
- Type
- ECOSYSTEM
- Events
-
Introduced5.16.0Fixed6.1.168
- Type
- ECOSYSTEM
- Events
-
Introduced6.2.0Fixed6.6.131
- Type
- ECOSYSTEM
- Events
-
Introduced6.7.0Fixed6.12.80
- Type
- ECOSYSTEM
- Events
-
Introduced6.13.0Fixed6.18.21
- Type
- ECOSYSTEM
- Events
-
Introduced6.19.0Fixed6.19.11