{"id":"CVE-2026-53123","summary":"md: wake raid456 reshape waiters before suspend","details":"In the Linux kernel, the following vulnerability has been resolved:\n\nmd: wake raid456 reshape waiters before suspend\n\nDuring raid456 reshape, direct IO across the reshape position can sleep\nin raid5_make_request() waiting for reshape progress while still\nholding an active_io reference. If userspace then freezes reshape and\nwrites md/suspend_lo or md/suspend_hi, mddev_suspend() kills active_io\nand waits for all in-flight IO to drain.\n\nThis can deadlock: the IO needs reshape progress to continue, but the\nreshape thread is already frozen, so the active_io reference is never\ndropped and suspend never completes.\n\nraid5_prepare_suspend() already wakes wait_for_reshape for dm-raid. Do\nthe same for normal md suspend when reshape is already interrupted, so\nwaiting raid456 IO can abort, drop its reference, and let suspend\nfinish.\n\nThe mdadm test tests/25raid456-reshape-deadlock reproduces the hang.","modified":"2026-06-25T04:05:21.051276962Z","published":"2026-06-24T16:30:52.609Z","database_specific":{"cna_assigner":"Linux","osv_generated_from":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/53xxx/CVE-2026-53123.json"},"references":[{"type":"PACKAGE","url":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git"},{"type":"WEB","url":"https://git.kernel.org/stable/c/8ae3e14d7f3df58f7f49c02d74344e3dcd5f84f0"},{"type":"WEB","url":"https://git.kernel.org/stable/c/8b6a72420821e6da2cab6a69d5233500d2698b93"},{"type":"WEB","url":"https://git.kernel.org/stable/c/cf86bb53b9c92354904a328e947a05ffbfdd1840"},{"type":"WEB","url":"https://git.kernel.org/stable/c/ff6b93410192b812d73cc54062529715b2dc849f"},{"type":"ADVISORY","url":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/53xxx/CVE-2026-53123.json"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2026-53123"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","events":[{"introduced":"714d20150ed85811193ae07a494d91f9927c590f"},{"fixed":"8b6a72420821e6da2cab6a69d5233500d2698b93"},{"fixed":"ff6b93410192b812d73cc54062529715b2dc849f"},{"fixed":"8ae3e14d7f3df58f7f49c02d74344e3dcd5f84f0"},{"fixed":"cf86bb53b9c92354904a328e947a05ffbfdd1840"}]}],"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2026-53123.json"}},{"package":{"name":"Kernel","ecosystem":"Linux"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"6.7.0"},{"fixed":"6.12.91"}]},{"type":"ECOSYSTEM","events":[{"introduced":"6.13.0"},{"fixed":"6.18.33"}]},{"type":"ECOSYSTEM","events":[{"introduced":"6.19.0"},{"fixed":"7.0.10"}]}],"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2026-53123.json"}}],"schema_version":"1.7.5"}