CVE-2026-45864
Awaiting Analysis Awaiting Analysis - Queue
Infinite Loop in Linux Kernel NTFS3 Filesystem

Publication date: 2026-05-27

Last updated on: 2026-05-27

Assigner: kernel.org

Description
In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: prevent infinite loops caused by the next valid being the same When processing valid within the range [valid : pos), if valid cannot be retrieved correctly, for example, if the retrieved valid value is always the same, this can trigger a potential infinite loop, similar to the hung problem reported by syzbot [1]. Adding a check for the valid value within the loop body, and terminating the loop and returning -EINVAL if the value is the same as the current value, can prevent this. [1] INFO: task syz.4.21:6056 blocked for more than 143 seconds. Call Trace: rwbase_write_lock+0x14f/0x750 kernel/locking/rwbase_rt.c:244 inode_lock include/linux/fs.h:1027 [inline] ntfs_file_write_iter+0xe6/0x870 fs/ntfs3/file.c:1284
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2026-05-27
Last Modified
2026-05-27
Generated
2026-06-16
AI Q&A
2026-05-27
EPSS Evaluated
2026-06-15
NVD
CVE-2026-45864
EUVD
EUVD-2026-32330
Affected Vendors & Products
Showing 2 associated CPEs
Vendor Product Version / Range
linux linux_kernel *
linux linux_kernel From 4.21 (inc)
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-UNKNOWN
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Executive Summary

This vulnerability exists in the Linux kernel's NTFS3 filesystem driver. It occurs when the code processing a range of valid values enters an infinite loop because the 'valid' value retrieved does not change and remains the same repeatedly. This causes the loop to never terminate, potentially hanging the system. The issue was fixed by adding a check inside the loop to detect if the 'valid' value is the same as the current one, and if so, the loop is terminated with an error.

Impact Analysis

This vulnerability can cause the Linux kernel to enter an infinite loop when handling NTFS3 filesystem operations, leading to a hung or unresponsive system. This can disrupt normal system operations, potentially causing denial of service by making the system or affected processes unavailable.

Mitigation Strategies

The vulnerability in the Linux kernel's ntfs3 filesystem driver can cause infinite loops when processing certain values. To mitigate this vulnerability, you should update your Linux kernel to a version where this issue has been fixed.

The fix involves adding a check in the loop processing valid values to terminate the loop and return an error if the same value is encountered repeatedly, preventing infinite loops.

Detection Guidance

This vulnerability causes an infinite loop in the Linux kernel's NTFS3 filesystem driver when processing certain values, which can lead to a hung system or blocked tasks.

To detect this issue on your system, you can monitor for hung or blocked tasks related to NTFS3 filesystem operations, such as processes stuck in ntfs_file_write_iter or similar calls.

Commands that may help detect symptoms include:

  • Using 'dmesg' or 'journalctl' to look for kernel messages indicating blocked tasks or hung processes.
  • Running 'ps -eo state,pid,cmd | grep D' to find processes in uninterruptible sleep, which may indicate a hung kernel operation.
  • Using 'perf' or 'ftrace' to trace kernel function calls related to ntfs3, such as ntfs_file_write_iter, to identify loops or hangs.
  • Checking for tasks blocked for extended periods (e.g., over 2 minutes) using 'cat /proc/*/stack' or 'cat /proc/*/status' to find stuck kernel threads.
Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2026-45864. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart