CVE-2026-43063 PUBLISHED

xfs: don't irele after failing to iget in xfs_attri_recover_work

Assigner: Linux
Reserved: 01.05.2026 Published: 05.05.2026 Updated: 05.05.2026

In the Linux kernel, the following vulnerability has been resolved:

xfs: don't irele after failing to iget in xfs_attri_recover_work

xlog_recovery_iget* never set @ip to a valid pointer if they return an error, so this irele will walk off a dangling pointer. Fix that.

Product Status

Vendor Linux
Product Linux
Versions Default: unaffected
  • affected from ae673f534a30976ce5e709c4535a59c12b786ef3 to b5c5a50c2f513d4a13a6763564a07b470e69cc5a (excl.)
  • affected from ae673f534a30976ce5e709c4535a59c12b786ef3 to a1a5df1038f0b3c560d204270373621a4e622808 (excl.)
  • affected from ae673f534a30976ce5e709c4535a59c12b786ef3 to 40082d08b638485cbaa543dc8087a3d1844d6f08 (excl.)
  • affected from ae673f534a30976ce5e709c4535a59c12b786ef3 to 70685c291ef82269180758130394ecdc4496b52c (excl.)
Vendor Linux
Product Linux
Versions Default: affected
  • Version 6.10 is affected
  • unaffected from 0 to 6.10 (excl.)
  • unaffected from 6.12.80 to 6.12.* (incl.)
  • unaffected from 6.18.21 to 6.18.* (incl.)
  • unaffected from 6.19.11 to 6.19.* (incl.)
  • unaffected from 7.0 to * (incl.)

References