CVE-2026-43127

UNKNOWN 0.0

ntfs3: fix circular locking dependency in run_unpack_ex

CVSS Score

0.0

EPSS Score

0.0%

EPSS Percentile

2th

In the Linux kernel, the following vulnerability has been resolved: ntfs3: fix circular locking dependency in run_unpack_ex Syzbot reported a circular locking dependency between wnd->rw_lock (sbi->used.bitmap) and ni->file.run_lock. The deadlock scenario: 1. ntfs_extend_mft() takes ni->file.run_lock then wnd->rw_lock. 2. run_unpack_ex() takes wnd->rw_lock then tries to acquire ni->file.run_lock inside ntfs_refresh_zone(). This creates an AB-BA deadlock. Fix this by using down_read_trylock() instead of down_read() when acquiring run_lock in run_unpack_ex(). If the lock is contended, skip ntfs_refresh_zone() - the MFT zone will be refreshed on the next MFT operation. This breaks the circular dependency since we never block waiting for run_lock while holding wnd->rw_lock.

Vendor	linux
Product	linux
Ecosystems	Linux Kernel
Industries	Technology
Published	May 6, 2026
Last Updated	May 23, 2026

Stay Ahead of the Next One

Get instant alerts for linux linux

Be the first to know when new unknown vulnerabilities affecting linux linux are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

Affected Versions

Linux / Linux

5fc982fe7eca9d0cf7b25832450ebd4f7c8e1c36 < b014372b62237521444ee51384549bdf48b79015 5fc982fe7eca9d0cf7b25832450ebd4f7c8e1c36 < b8d22d9d8260b0f4f4d8e2898c98037c9982ea66 5fc982fe7eca9d0cf7b25832450ebd4f7c8e1c36 < 08ce2fee1b869ecbfbd94e0eb2630e52203a2e03 57f7979aefdcef66326bda47e07ee0d8be64bf21 db7fc56646cafe39599a4c21f1398e2bdfd5c185 6.6.66 < 6.7 6.12.5 < 6.13

Linux / Linux

6.13

References

NVD ↗ CVE.org ↗ EPSS Data ↗

git.kernel.org: https://git.kernel.org/stable/c/b014372b62237521444ee51384549bdf48b79015 git.kernel.org: https://git.kernel.org/stable/c/b8d22d9d8260b0f4f4d8e2898c98037c9982ea66 git.kernel.org: https://git.kernel.org/stable/c/08ce2fee1b869ecbfbd94e0eb2630e52203a2e03