CVE-2026-46256

EUVD-2026-34118
In the Linux kernel, the following vulnerability has been resolved:

NFS/localio: prevent direct reclaim recursion into NFS via nfs_writepages

LOCALIO is an NFS loopback mount optimization that avoids using the
network for READ, WRITE and COMMIT if the NFS client and server are
determined to be on the same system. But because LOCALIO is still
fundamentally "just NFS loopback mount" it is susceptible to recursion
deadlock via direct reclaim, e.g.: NFS LOCALIO down to XFS and then
back into NFS via nfs_writepages.

Fix LOCALIO's potential for direct reclaim deadlock by ensuring that
all its page cache allocations are done from GFP_NOFS context.

Thanks to Ben Coddington for pointing out commit ad22c7a043c2 ("xfs:
prevent stack overflows from page cache allocation").
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
5.5 MEDIUM
LOCAL
LOW
LOW
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: 1%
Affected Products (NVD)
VendorProductVersion
linuxlinux_kernel
6.12 ≤
𝑥
< 6.18.14
linuxlinux_kernel
6.19 ≤
𝑥
< 6.19.4
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
linux
bookworm
6.1.176-1
fixed
bookworm (security)
6.1.176-1
fixed
bullseye
5.10.223-1
fixed
bullseye (security)
5.10.259-1
fixed
forky
7.1.3-1
fixed
sid
7.1.3-1
fixed
trixie
vulnerable
trixie (security)
vulnerable
Amazon Linux logo
Amazon Linux Releases
Amazon Package
Release
bpftool6.18
Amazon Linux 2023
1:6.18.15-14.217.amzn2023
fixed
bpftool6.18-debuginfo
Amazon Linux 2023
1:6.18.15-14.217.amzn2023
fixed
kernel-livepatch-6.18.15-14.217
Amazon Linux 2023
1:1.0-0.amzn2023
fixed
kernel6.18
Amazon Linux 2023
1:6.18.15-14.217.amzn2023
fixed
kernel6.18-debuginfo
Amazon Linux 2023
1:6.18.15-14.217.amzn2023
fixed
kernel6.18-debuginfo-common-aarch64
Amazon Linux 2023
1:6.18.15-14.217.amzn2023
fixed
kernel6.18-debuginfo-common-x86_64
Amazon Linux 2023
1:6.18.15-14.217.amzn2023
fixed
kernel6.18-devel
Amazon Linux 2023
1:6.18.15-14.217.amzn2023
fixed
kernel6.18-headers
Amazon Linux 2023
1:6.18.15-14.217.amzn2023
fixed
kernel6.18-libbpf
Amazon Linux 2023
1:6.18.15-14.217.amzn2023
fixed
kernel6.18-libbpf-debuginfo
Amazon Linux 2023
1:6.18.15-14.217.amzn2023
fixed
kernel6.18-libbpf-devel
Amazon Linux 2023
1:6.18.15-14.217.amzn2023
fixed
kernel6.18-libbpf-static
Amazon Linux 2023
1:6.18.15-14.217.amzn2023
fixed
kernel6.18-modules-extra
Amazon Linux 2023
1:6.18.15-14.217.amzn2023
fixed
kernel6.18-modules-extra-common
Amazon Linux 2023
1:6.18.15-14.217.amzn2023
fixed
kernel6.18-tools
Amazon Linux 2023
1:6.18.15-14.217.amzn2023
fixed
kernel6.18-tools-debuginfo
Amazon Linux 2023
1:6.18.15-14.217.amzn2023
fixed
kernel6.18-tools-devel
Amazon Linux 2023
1:6.18.15-14.217.amzn2023
fixed
perf6.18
Amazon Linux 2023
1:6.18.15-14.217.amzn2023
fixed
perf6.18-debuginfo
Amazon Linux 2023
1:6.18.15-14.217.amzn2023
fixed
python3-perf6.18
Amazon Linux 2023
1:6.18.15-14.217.amzn2023
fixed
python3-perf6.18-debuginfo
Amazon Linux 2023
1:6.18.15-14.217.amzn2023
fixed