CVE-2026-53321 (GCVE-0-2026-53321)

Vulnerability from cvelistv5 – Published: 2026-06-26 19:41 – Updated: 2026-06-26 19:41
VLAI
Title
io_uring/napi: cap busy_poll_to 10 msec
Summary
In the Linux kernel, the following vulnerability has been resolved: io_uring/napi: cap busy_poll_to 10 msec Currently there's no cap on the maximum amount of time that napi is allowed to poll if no events are found, which can lead to kernel complaints on a task being stuck as there's no conditional rescheduling done within that loop. Just cap it to 10 msec in total, that's already way above any kind of sane value that will reap any benefits, yet low enough that it's nowhere near being able to trigger preemption complaints.
Assigner
Impacted products
Vendor Product Version
Linux Linux Affected: 8d0c12a80cdeb80d5e0510e96d38fe551ed8e9b5 , < 39767f944a8c9e696566c37ad5b20131406c4b8d (git)
Affected: 8d0c12a80cdeb80d5e0510e96d38fe551ed8e9b5 , < cb3af525f8dfb8930f0c123e5755fa967a12d5c1 (git)
Affected: 8d0c12a80cdeb80d5e0510e96d38fe551ed8e9b5 , < df8599ee18c0e5fe343ffe0b4c379636b8bb839a (git)
Create a notification for this product.
Linux Linux Affected: 6.9
Unaffected: 0 , < 6.9 (semver)
Unaffected: 6.18.33 , ≤ 6.18.* (semver)
Unaffected: 7.0.10 , ≤ 7.0.* (semver)
Unaffected: 7.1 , ≤ * (original_commit_for_fix)
Create a notification for this product.
Show details on NVD website

{
  "containers": {
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "io_uring/napi.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "39767f944a8c9e696566c37ad5b20131406c4b8d",
              "status": "affected",
              "version": "8d0c12a80cdeb80d5e0510e96d38fe551ed8e9b5",
              "versionType": "git"
            },
            {
              "lessThan": "cb3af525f8dfb8930f0c123e5755fa967a12d5c1",
              "status": "affected",
              "version": "8d0c12a80cdeb80d5e0510e96d38fe551ed8e9b5",
              "versionType": "git"
            },
            {
              "lessThan": "df8599ee18c0e5fe343ffe0b4c379636b8bb839a",
              "status": "affected",
              "version": "8d0c12a80cdeb80d5e0510e96d38fe551ed8e9b5",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "io_uring/napi.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "6.9"
            },
            {
              "lessThan": "6.9",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.18.*",
              "status": "unaffected",
              "version": "6.18.33",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "7.0.*",
              "status": "unaffected",
              "version": "7.0.10",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "7.1",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.18.33",
                  "versionStartIncluding": "6.9",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "7.0.10",
                  "versionStartIncluding": "6.9",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "7.1",
                  "versionStartIncluding": "6.9",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nio_uring/napi: cap busy_poll_to 10 msec\n\nCurrently there\u0027s no cap on the maximum amount of time that napi is\nallowed to poll if no events are found, which can lead to kernel\ncomplaints on a task being stuck as there\u0027s no conditional rescheduling\ndone within that loop.\n\nJust cap it to 10 msec in total, that\u0027s already way above any kind of\nsane value that will reap any benefits, yet low enough that it\u0027s\nnowhere near being able to trigger preemption complaints."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2026-06-26T19:41:12.589Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/39767f944a8c9e696566c37ad5b20131406c4b8d"
        },
        {
          "url": "https://git.kernel.org/stable/c/cb3af525f8dfb8930f0c123e5755fa967a12d5c1"
        },
        {
          "url": "https://git.kernel.org/stable/c/df8599ee18c0e5fe343ffe0b4c379636b8bb839a"
        }
      ],
      "title": "io_uring/napi: cap busy_poll_to 10 msec",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2026-53321",
    "datePublished": "2026-06-26T19:41:12.589Z",
    "dateReserved": "2026-06-09T07:44:35.398Z",
    "dateUpdated": "2026-06-26T19:41:12.589Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2",
  "vulnerability-lookup:meta": {
    "epss": {
      "cve": "CVE-2026-53321",
      "date": "2026-07-08",
      "epss": "0.00112",
      "percentile": "0.01647"
    },
    "nvd": "{\"cve\":{\"id\":\"CVE-2026-53321\",\"sourceIdentifier\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\",\"published\":\"2026-06-26T20:17:25.460\",\"lastModified\":\"2026-07-06T20:12:04.203\",\"vulnStatus\":\"Analyzed\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"In the Linux kernel, the following vulnerability has been resolved:\\n\\nio_uring/napi: cap busy_poll_to 10 msec\\n\\nCurrently there\u0027s no cap on the maximum amount of time that napi is\\nallowed to poll if no events are found, which can lead to kernel\\ncomplaints on a task being stuck as there\u0027s no conditional rescheduling\\ndone within that loop.\\n\\nJust cap it to 10 msec in total, that\u0027s already way above any kind of\\nsane value that will reap any benefits, yet low enough that it\u0027s\\nnowhere near being able to trigger preemption complaints.\"}],\"affected\":[{\"source\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\",\"affectedData\":[{\"vendor\":\"Linux\",\"product\":\"Linux\",\"defaultStatus\":\"unaffected\",\"programFiles\":[\"io_uring/napi.c\"],\"repo\":\"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git\",\"versions\":[{\"version\":\"8d0c12a80cdeb80d5e0510e96d38fe551ed8e9b5\",\"lessThan\":\"39767f944a8c9e696566c37ad5b20131406c4b8d\",\"versionType\":\"git\",\"status\":\"affected\"},{\"version\":\"8d0c12a80cdeb80d5e0510e96d38fe551ed8e9b5\",\"lessThan\":\"cb3af525f8dfb8930f0c123e5755fa967a12d5c1\",\"versionType\":\"git\",\"status\":\"affected\"},{\"version\":\"8d0c12a80cdeb80d5e0510e96d38fe551ed8e9b5\",\"lessThan\":\"df8599ee18c0e5fe343ffe0b4c379636b8bb839a\",\"versionType\":\"git\",\"status\":\"affected\"}]},{\"vendor\":\"Linux\",\"product\":\"Linux\",\"defaultStatus\":\"affected\",\"programFiles\":[\"io_uring/napi.c\"],\"repo\":\"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git\",\"versions\":[{\"version\":\"6.9\",\"status\":\"affected\"},{\"version\":\"0\",\"lessThan\":\"6.9\",\"versionType\":\"semver\",\"status\":\"unaffected\"},{\"version\":\"6.18.33\",\"lessThanOrEqual\":\"6.18.*\",\"versionType\":\"semver\",\"status\":\"unaffected\"},{\"version\":\"7.0.10\",\"lessThanOrEqual\":\"7.0.*\",\"versionType\":\"semver\",\"status\":\"unaffected\"},{\"version\":\"7.1\",\"lessThanOrEqual\":\"*\",\"versionType\":\"original_commit_for_fix\",\"status\":\"unaffected\"}]}]}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H\",\"baseScore\":5.5,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":1.8,\"impactScore\":3.6}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"NVD-CWE-noinfo\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"6.9\",\"versionEndExcluding\":\"6.18.33\",\"matchCriteriaId\":\"1EDDD524-D116-4F56-B538-45CF035B8353\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"6.19\",\"versionEndExcluding\":\"7.0.10\",\"matchCriteriaId\":\"A13475D2-59BF-4716-94B5-7C1D239A2CF4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:7.1:rc1:*:*:*:*:*:*\",\"matchCriteriaId\":\"B1EF7059-E670-45F4-B422-54C40FA86390\"}]}]}],\"references\":[{\"url\":\"https://git.kernel.org/stable/c/39767f944a8c9e696566c37ad5b20131406c4b8d\",\"source\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\",\"tags\":[\"Patch\"]},{\"url\":\"https://git.kernel.org/stable/c/cb3af525f8dfb8930f0c123e5755fa967a12d5c1\",\"source\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\",\"tags\":[\"Patch\"]},{\"url\":\"https://git.kernel.org/stable/c/df8599ee18c0e5fe343ffe0b4c379636b8bb839a\",\"source\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\",\"tags\":[\"Patch\"]}]}}"
  }
}


Log in or create an account to share your comment.




Tags
Taxonomy of the tags.


Loading…

Loading…

Loading…

Forecast uses a logistic model when the trend is rising, or an exponential decay model when the trend is falling. Fitted via linearized least squares.

Sightings

Author Source Type Date Other

Nomenclature

  • Seen: The vulnerability was mentioned, discussed, or observed by the user.
  • Confirmed: The vulnerability has been validated from an analyst's perspective.
  • Published Proof of Concept: A public proof of concept is available for this vulnerability.
  • Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
  • Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
  • Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
  • Not confirmed: The user expressed doubt about the validity of the vulnerability.
  • Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Loading…

Detection rules are retrieved from Rulezet.

Loading…

Loading…