Bug 2493767 (CVE-2026-53319) - CVE-2026-53319 kernel: blk-wbt: remove WARN_ON_ONCE from wbt_init_enable_default()
Summary: CVE-2026-53319 kernel: blk-wbt: remove WARN_ON_ONCE from wbt_init_enable_defa...
Keywords:
Status: NEW
Alias: CVE-2026-53319
Product: Security Response
Classification: Other
Component: vulnerability
Version: unspecified
Hardware: All
OS: Linux
unspecified
unspecified
Target Milestone: ---
Assignee: Product Security
QA Contact:
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+ depends on / blocked
 
Reported: 2026-06-26 21:06 UTC by OSIDB Bzimport
Modified: 2026-06-29 08:22 UTC (History)
2 users (show)

Fixed In Version:
Clone Of:
Environment:
Last Closed:
Embargoed:


Attachments (Terms of Use)

Description OSIDB Bzimport 2026-06-26 21:06:18 UTC
In the Linux kernel, the following vulnerability has been resolved:

blk-wbt: remove WARN_ON_ONCE from wbt_init_enable_default()

wbt_init_enable_default() uses WARN_ON_ONCE to check for failures from
wbt_alloc() and wbt_init(). However, both are expected failure paths:

- wbt_alloc() can return NULL under memory pressure (-ENOMEM)
- wbt_init() can fail with -EBUSY if wbt is already registered

syzbot triggers this by injecting memory allocation failures during MTD
partition creation via ioctl(BLKPG), causing a spurious warning.

wbt_init_enable_default() is a best-effort initialization called from
blk_register_queue() with a void return type. Failure simply means the
disk operates without writeback throttling, which is harmless.

Replace WARN_ON_ONCE with plain if-checks, consistent with how
wbt_set_lat() in the same file already handles these failures. Add a
pr_warn() for the wbt_init() failure to retain diagnostic information
without triggering a full stack trace.

Comment 1 Mauro Matteo Cascella 2026-06-29 08:18:50 UTC
Upstream advisory:
https://lore.kernel.org/linux-cve-announce/2026062622-CVE-2026-53319-1f57@gregkh/T


Note You need to log in before you can comment on or make changes to this bug.