HOMEVULNERABILITIESCVE-2026-45961
NONE

CVE-2026-45961

Published: May 27, 2026· Updated: May 27, 2026

Official Description

In the Linux kernel, the following vulnerability has been resolved:

gfs2: fix memory leaks in gfs2_fill_super error path

Fix two memory leaks in the gfs2_fill_super() error handling path when

transitioning a filesystem to read-write mode fails.

First leak: kthread objects (thread_struct, task_struct, etc.)

When gfs2_freeze_lock_shared() fails after init_threads() succeeds, the

created kernel threads (logd and quotad) are never destroyed. This

occurs because the fail_per_node label doesn't call

gfs2_destroy_threads().

Second leak: quota bitmap buffer (8192 bytes)

When gfs2_make_fs_rw() fails after gfs2_quota_init() succeeds but

before other operations complete, the allocated quota bitmap is never

freed.

The fix moves thread cleanup to the fail_per_node label to handle all

error paths uniformly. gfs2_destroy_threads() is safe to call

unconditionally as it checks for NULL pointers. Quota cleanup is added

in gfs2_make_fs_rw() to properly handle the withdrawal case where

quota initialization succeeds but the filesystem is then withdrawn.

Thread leak backtrace (gfs2_freeze_lock_shared failure):

unreferenced object 0xffff88801d7bca80 (size 4480):

copy_process+0x3a1/0x4670 kernel/fork.c:2422

kernel_clone+0xf3/0x6e0 kernel/fork.c:2779

kthread_create_on_node+0x100/0x150 kernel/kthread.c:478

init_threads+0xab/0x350 fs/gfs2/ops_fstype.c:611

gfs2_fill_super+0xe5c/0x1240 fs/gfs2/ops_fstype.c:1265

Quota leak backtrace (gfs2_make_fs_rw failure):

unreferenced object 0xffff88812de7c000 (size 8192):

gfs2_quota_init+0xe5/0x820 fs/gfs2/quota.c:1409

gfs2_make_fs_rw+0x7a/0xe0 fs/gfs2/super.c:149

gfs2_fill_super+0xfbb/0x1240 fs/gfs2/ops_fstype.c:1275

NVD Source

Technical Analysis

CVE-2026-45961 requires local access, meaning attackers must already have a foothold on the target system.

Exploitation requires some privileges, which limits the exposure to scenarios where an attacker has already gained initial access.

Affected Vendors & Products

Mentioned vendors (from description):
Linux
CPE data not yet available in NVD for this CVE.

Exploit & PoC Resources

NO KNOWN EXPLOITNo public exploit confirmed at this time
External links open in a new tab. Always verify in a controlled environment before use.

All References (2)

Quick Facts

CVE IDCVE-2026-45961
SeverityNONE
CISA KEVNo
PublishedMay 27, 2026

Recommended Actions

  • Apply vendor patches immediately
  • Monitor CVE-2026-45961 in threat intel feeds
  • Review IDS/IPS signatures for exploitation attempts
Data sourced from NVD (NIST), CISA KEV, and EPSS (FIRST). Analysis generated by CTIWATCH.COM. CVE data is provided under the NVD usage policy.