CVE-2026-53309 PUBLISHED

ocfs2/dlm: fix off-by-one in dlm_match_regions() region comparison

Assigner: Linux
Reserved: 09.06.2026 Published: 26.06.2026 Updated: 26.06.2026

In the Linux kernel, the following vulnerability has been resolved:

ocfs2/dlm: fix off-by-one in dlm_match_regions() region comparison

The local-vs-remote region comparison loop uses '<=' instead of '<', causing it to read one entry past the valid range of qr_regions. The other loops in the same function correctly use '<'.

Fix the loop condition to use '<' for consistency and correctness.

Product Status

Vendor Linux
Product Linux
Versions Default: unaffected
  • affected from ea2034416b54700e30371f2ad6517cbb94674083 to 760ab35040aca8399021fdb9ff1db1089feb7194 (excl.)
  • affected from ea2034416b54700e30371f2ad6517cbb94674083 to c60a2710b73838d250cda57344c049b89abc5d52 (excl.)
  • affected from ea2034416b54700e30371f2ad6517cbb94674083 to 2a0673836f019e7c032acbf48d022d5ccf02a845 (excl.)
  • affected from ea2034416b54700e30371f2ad6517cbb94674083 to 819d8ebad3200a53de99bd7e297bc428e41ced54 (excl.)
  • affected from ea2034416b54700e30371f2ad6517cbb94674083 to d5403ae28085761d58b555645bc7d5feadb10073 (excl.)
  • affected from ea2034416b54700e30371f2ad6517cbb94674083 to 1fb7f356547d9688822315cd2b205ff0bd5429b4 (excl.)
  • affected from ea2034416b54700e30371f2ad6517cbb94674083 to 426cd8eedac89b86148d4478990eeef16e8a2520 (excl.)
  • affected from ea2034416b54700e30371f2ad6517cbb94674083 to 01b61e8dda9b0fdb0d4cda43de25f4e390554d7b (excl.)
Vendor Linux
Product Linux
Versions Default: affected
  • Version 2.6.37 is affected
  • unaffected from 0 to 2.6.37 (excl.)
  • unaffected from 5.10.258 to 5.10.* (incl.)
  • unaffected from 5.15.209 to 5.15.* (incl.)
  • unaffected from 6.1.175 to 6.1.* (incl.)
  • unaffected from 6.6.141 to 6.6.* (incl.)
  • unaffected from 6.12.91 to 6.12.* (incl.)
  • unaffected from 6.18.33 to 6.18.* (incl.)
  • unaffected from 7.0.10 to 7.0.* (incl.)
  • unaffected from 7.1 to * (incl.)

References