{"dataType":"CVE_RECORD","dataVersion":"5.2","cveMetadata":{"cveId":"CVE-2026-53126","assignerOrgId":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","state":"PUBLISHED","assignerShortName":"Linux","dateReserved":"2026-06-09T07:44:35.386Z","datePublished":"2026-06-24T16:30:54.594Z","dateUpdated":"2026-06-24T16:30:54.594Z"},"containers":{"cna":{"providerMetadata":{"orgId":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","shortName":"Linux","dateUpdated":"2026-06-24T16:30:54.594Z"},"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nblk-cgroup: fix disk reference leak in blkcg_maybe_throttle_current()\n\nAdd the missing put_disk() on the error path in\nblkcg_maybe_throttle_current(). When blkcg lookup, blkg lookup, or\nblkg_tryget() fails, the function jumps to the out label which only\ncalls rcu_read_unlock() but does not release the disk reference acquired\nby blkcg_schedule_throttle() via get_device(). Since current->throttle_disk\nis already set to NULL before the lookup, blkcg_exit() cannot release\nthis reference either, causing the disk to never be freed.\n\nRestore the reference release that was present as blk_put_queue() in the\noriginal code but was inadvertently dropped during the conversion from\nrequest_queue to gendisk."}],"affected":[{"product":"Linux","vendor":"Linux","defaultStatus":"unaffected","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","programFiles":["block/blk-cgroup.c"],"versions":[{"version":"f05837ed73d0c73e950b2d9f2612febb0d3d451e","lessThan":"4048ed98860d3785645ebbd34f69566a6c7320c3","status":"affected","versionType":"git"},{"version":"f05837ed73d0c73e950b2d9f2612febb0d3d451e","lessThan":"73a5af059905d171b398c8b2381632ee499948b5","status":"affected","versionType":"git"},{"version":"f05837ed73d0c73e950b2d9f2612febb0d3d451e","lessThan":"b3e005f16cd98f815429a87aef4c61e9c140779f","status":"affected","versionType":"git"},{"version":"f05837ed73d0c73e950b2d9f2612febb0d3d451e","lessThan":"000e8454692cab9d1f1b80130e2870e355301d06","status":"affected","versionType":"git"},{"version":"f05837ed73d0c73e950b2d9f2612febb0d3d451e","lessThan":"23308af722fefed00af5f238024c11710938fba3","status":"affected","versionType":"git"}]},{"product":"Linux","vendor":"Linux","defaultStatus":"affected","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","programFiles":["block/blk-cgroup.c"],"versions":[{"version":"6.3","status":"affected"},{"version":"0","lessThan":"6.3","status":"unaffected","versionType":"semver"},{"version":"6.6.141","lessThanOrEqual":"6.6.*","status":"unaffected","versionType":"semver"},{"version":"6.12.91","lessThanOrEqual":"6.12.*","status":"unaffected","versionType":"semver"},{"version":"6.18.33","lessThanOrEqual":"6.18.*","status":"unaffected","versionType":"semver"},{"version":"7.0.10","lessThanOrEqual":"7.0.*","status":"unaffected","versionType":"semver"},{"version":"7.1","lessThanOrEqual":"*","status":"unaffected","versionType":"original_commit_for_fix"}]}],"cpeApplicability":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"6.3","versionEndExcluding":"6.6.141"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"6.3","versionEndExcluding":"6.12.91"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"6.3","versionEndExcluding":"6.18.33"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"6.3","versionEndExcluding":"7.0.10"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"6.3","versionEndExcluding":"7.1"}]}]}],"references":[{"url":"https://git.kernel.org/stable/c/4048ed98860d3785645ebbd34f69566a6c7320c3"},{"url":"https://git.kernel.org/stable/c/73a5af059905d171b398c8b2381632ee499948b5"},{"url":"https://git.kernel.org/stable/c/b3e005f16cd98f815429a87aef4c61e9c140779f"},{"url":"https://git.kernel.org/stable/c/000e8454692cab9d1f1b80130e2870e355301d06"},{"url":"https://git.kernel.org/stable/c/23308af722fefed00af5f238024c11710938fba3"}],"title":"blk-cgroup: fix disk reference leak in blkcg_maybe_throttle_current()","x_generator":{"engine":"bippy-1.2.0"}}}}