CVE-2026-53303 - Vulnerability Details

- f2fs: protect extension_list reading with sb_lock in f2fs_sbi_show()

Description

In the Linux kernel, the following vulnerability has been resolved:

f2fs: protect extension_list reading with sb_lock in f2fs_sbi_show()

In f2fs_sbi_show(), the extension_list, extension_count and
hot_ext_count are read without holding sbi->sb_lock. If a concurrent
sysfs store modifies the extension list via f2fs_update_extension_list(),
the show path may read inconsistent count and array contents, potentially
leading to out-of-bounds access or displaying stale data.

Fix this by holding sb_lock around the entire extension list read
and format operation.

Published: 2026-06-26

Score: n/a

EPSS: < 1% Very Low

KEV: No

Impact:

Action:

Analysis

Analysis and contextual insights are available on OpenCVE Cloud.

Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).

Vendor Product Default status Versions

Linux

unaffected

Version	Status	Constraints
`b6a06cbbb5f7fd03589cff9178314af04c568826`	affected	< d3ff0c121bbaef026df6248ab7ef6f0b068b0647
`b6a06cbbb5f7fd03589cff9178314af04c568826`	affected	< cea15f66b7b68b2c50943a6660e0692c6635e4eb
`b6a06cbbb5f7fd03589cff9178314af04c568826`	affected	< 4b3a1bf4c2ffd4c9595d900ead78c9035894a025
`b6a06cbbb5f7fd03589cff9178314af04c568826`	affected	< d0e877810baf613b018fd9747440b9d4d9db1428
`b6a06cbbb5f7fd03589cff9178314af04c568826`	affected	< ea3ab43a1f3cf2c7cecd75c8be1ee99a5e94a92e
`b6a06cbbb5f7fd03589cff9178314af04c568826`	affected	< 5909bedbed38c558bee7cb6758ceedf9bc3a9194

Linux

affected

Version	Status	Constraints
`4.17`	affected	—
`0`	unaffected	< 4.17
`6.1.175`	unaffected	≤ 6.1.*
`6.6.141`	unaffected	≤ 6.6.*
`6.12.91`	unaffected	≤ 6.12.*
`6.18.33`	unaffected	≤ 6.18.*
`7.0.10`	unaffected	≤ 7.0.*
`7.1`	unaffected	≤ *

No data.

Vendor Product Confidence Versions

Linux

Linux Kernel

99%

Version	Status	Scheme	Platform
`[b6a06cbbb5f7fd03589cff9178314af04c568826,d3ff0c121bbaef026df6248ab7ef6f0b068b0647)`	affected	code_commit	—
`[b6a06cbbb5f7fd03589cff9178314af04c568826,cea15f66b7b68b2c50943a6660e0692c6635e4eb)`	affected	code_commit	—
`[b6a06cbbb5f7fd03589cff9178314af04c568826,4b3a1bf4c2ffd4c9595d900ead78c9035894a025)`	affected	code_commit	—
`[b6a06cbbb5f7fd03589cff9178314af04c568826,d0e877810baf613b018fd9747440b9d4d9db1428)`	affected	code_commit	—
`[b6a06cbbb5f7fd03589cff9178314af04c568826,ea3ab43a1f3cf2c7cecd75c8be1ee99a5e94a92e)`	affected	code_commit	—
`[b6a06cbbb5f7fd03589cff9178314af04c568826,5909bedbed38c558bee7cb6758ceedf9bc3a9194)`	affected	code_commit	—

Linux

Linux Kernel

99%

Version	Status	Scheme	Platform
`[4.17,4.17]`	affected	generic	—
`[0,4.17)`	unaffected	generic	—
`[6.1.175,6.2.0)`	unaffected	generic	—
`[6.6.141,6.7.0)`	unaffected	generic	—
`[6.12.91,6.13.0)`	unaffected	generic	—
`[6.18.33,6.19.0)`	unaffected	generic	—
`[7.0.10,7.1.0)`	unaffected	generic	—
`[7.1,*]`	unaffected	generic	—

Found an issue or want to improve our Enrichment? You can suggest it directly by opening an issue on our dedicated GitHub repository .

Remediation

No vendor fix or workaround currently provided.

Additional remediation guidance may be available on OpenCVE Cloud.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

The EPSS score is 0.00172.

Key SSVC decision points have not yet been added.

References

Link	Providers
https://git.kernel.org/stable/c/4b3a1bf4c2ffd4c9595d900ead78c9035894a025
https://git.kernel.org/stable/c/5909bedbed38c558bee7cb6758ceedf9bc3a9194
https://git.kernel.org/stable/c/cea15f66b7b68b2c50943a6660e0692c6635e4eb
https://git.kernel.org/stable/c/d0e877810baf613b018fd9747440b9d4d9db1428
https://git.kernel.org/stable/c/d3ff0c121bbaef026df6248ab7ef6f0b068b0647
https://git.kernel.org/stable/c/ea3ab43a1f3cf2c7cecd75c8be1ee99a5e94a92e

History

Fri, 26 Jun 2026 22:00:00 +0000

Type	Values Removed	Values Added
Weaknesses		CWE-119 CWE-363

Fri, 26 Jun 2026 20:15:00 +0000

Type	Values Removed	Values Added
Description		In the Linux kernel, the following vulnerability has been resolved: f2fs: protect extension_list reading with sb_lock in f2fs_sbi_show() In f2fs_sbi_show(), the extension_list, extension_count and hot_ext_count are read without holding sbi->sb_lock. If a concurrent sysfs store modifies the extension list via f2fs_update_extension_list(), the show path may read inconsistent count and array contents, potentially leading to out-of-bounds access or displaying stale data. Fix this by holding sb_lock around the entire extension list read and format operation.
Title		f2fs: protect extension_list reading with sb_lock in f2fs_sbi_show()
First Time appeared		Linux Linux linux Kernel
CPEs		cpe:2.3:o:linux:linux_kernel::::::::
Vendors & Products		Linux Linux linux Kernel
References		https://git.kernel.org/stable/c/4b3a1bf4c2ffd4c9595d900ead78c9035894a025 https://git.kernel.org/stable/c/5909bedbed38c558bee7cb6758ceedf9bc3a9194 https://git.kernel.org/stable/c/cea15f66b7b68b2c50943a6660e0692c6635e4eb https://git.kernel.org/stable/c/d0e877810baf613b018fd9747440b9d4d9db1428 https://git.kernel.org/stable/c/d3ff0c121bbaef026df6248ab7ef6f0b068b0647 https://git.kernel.org/stable/c/ea3ab43a1f3cf2c7cecd75c8be1ee99a5e94a92e

Subscriptions

Linux Linux Kernel

MITRE

Status: PUBLISHED

Assigner: Linux

Published: 2026-06-26T19:40:59.383Z

Updated: 2026-06-26T19:40:59.383Z

Reserved: 2026-06-09T07:44:35.397Z

Link: CVE-2026-53303

Vulnrichment

No data.

NVD

No data.

Redhat

No data.

OpenCVE Enrichment

Updated: 2026-06-27T02:45:09Z

Weaknesses

Tracking

Subscriptions

JSON object

JSON object

JSON object

JSON object

JSON object