How is CVE-2026-46304 exploited?

Network reachability (required): The attacker must reach the nvmet-tcp target port over the network; the vulnerable teardown path is triggered by establishing and then dropping an NVMe-over-TCP controller connection remotely. Authentication (not-required): No credentials are needed; the exploit is triggered during the unauthenticated NVMe discovery controller handshake and teardown sequence. Victim interaction (not-required): No user or administrator interaction is required; the attacker drives the entire sequence by initiating and then closing the network connection. Attack complexity (info): Attack complexity is low; the recursive locking condition is reliably reproducible with a straightforward connect-and-disconnect sequence and requires no special timing or environmental conditions.

What is the impact of CVE-2026-46304?

The nvmet-wq workqueue deadlocks on a recursive flush, causing the kernel to hang or panic the nvmet subsystem. All in-flight NVMe-over-TCP sessions on the affected host are terminated, interrupting block storage access for any workloads backed by that target. The denial of service persists until the host is rebooted or the kernel module is reloaded, depending on kernel configuration.

Back to search

HIGHCVE-2026-46304Published 2026-06-08Modified 2026-06-14CNA Linux

CVE-2026-46304: nvmet: avoid recursive nvmet-wq flush in nvmet_ctrl_free

In the Linux kernel, the following vulnerability has been resolved: nvmet: avoid recursive nvmet-wq flush in nvmet_ctrl_free nvmet_tcp_release_queue_work() runs on nvmet-wq and can drop the final controller reference through nvmet_cq_put(). If that triggers nvmet_ctrl_free(), the teardown path flushes ctrl->async_event_work on the same nvmet-wq. Call chain: nvmet_tcp_schedule_release_queue() kref_put(&queue->kref, nvmet_tcp_release_queue) nvmet_tcp_release_queue() queue_work(nvmet_wq, &queue->release_work) <--- nvmet_wq process_one_work() nvmet_tcp_release_queue_work() nvmet_cq_put(&queue->nvme_cq) nvmet_cq_destroy() nvmet_ctrl_put(cq->ctrl) nvmet_ctrl_free() flush_work(&ctrl->async_event_work) <--- nvmet_wq Previously Scheduled by :- nvmet_add_async_event queue_work(nvmet_wq, &ctrl->async_event_work); This trips lockdep with a possible recursive locking warning. [ 5223.015876] run blktests nvme/003 at 2026-04-07 20:53:55 [ 5223.061801] loop0: detected capacity change from 0 to 2097152 [ 5223.072206] nvmet: adding nsid 1 to subsystem blktests-subsystem-1 [ 5223.088368] nvmet_tcp: enabling port 0 (127.0.0.1:4420) [ 5223.126086] nvmet: Created discovery controller 1 for subsystem nqn.2014-08.org.nvmexpress.discovery for NQN nqn.2014-08.org.nvmexpress:uuid:0f01fb42-9f7f-4856-b0b3-51e60b8de349. [ 5223.128453] nvme nvme1: new ctrl: NQN "nqn.2014-08.org.nvmexpress.discovery", addr 127.0.0.1:4420, hostnqn: nqn.2014-08.org.nvmexpress:uuid:0f01fb42-9f7f-4856-b0b3-51e60b8de349 [ 5233.199447] nvme nvme1: Removing ctrl: NQN "nqn.2014-08.org.nvmexpress.discovery" [ 5233.227718] ============================================ [ 5233.231283] WARNING: possible recursive locking detected [ 5233.234696] 7.0.0-rc3nvme+ #20 Tainted: G O N [ 5233.238434] -------------------------------------------- [ 5233.241852] kworker/u192:6/2413 is trying to acquire lock: [ 5233.245429] ffff888111632548 ((wq_completion)nvmet-wq){+.+.}-{0:0}, at: touch_wq_lockdep_map+0x26/0x90 [ 5233.251438] but task is already holding lock: [ 5233.255254] ffff888111632548 ((wq_completion)nvmet-wq){+.+.}-{0:0}, at: process_one_work+0x5cc/0x6e0 [ 5233.261125] other info that might help us debug this: [ 5233.265333] Possible unsafe locking scenario: [ 5233.269217] CPU0 [ 5233.270795] ---- [ 5233.272436] lock((wq_completion)nvmet-wq); [ 5233.275241] lock((wq_completion)nvmet-wq); [ 5233.278020] *** DEADLOCK *** [ 5233.281793] May be due to missing lock nesting notation [ 5233.286195] 3 locks held by kworker/u192:6/2413: [ 5233.289192] #0: ffff888111632548 ((wq_completion)nvmet-wq){+.+.}-{0:0}, at: process_one_work+0x5cc/0x6e0 [ 5233.294569] #1: ffffc9000e2a7e40 ((work_completion)(&queue->release_work)){+.+.}-{0:0}, at: process_one_work+0x1c5/0x6e0 [ 5233.300128] #2: ffffffff82d7dc40 (rcu_read_lock){....}-{1:3}, at: __flush_work+0x62/0x530 [ 5233.304290] stack backtrace: [ 5233.306520] CPU: 4 UID: 0 PID: 2413 Comm: kworker/u192:6 Tainted: G O N 7.0.0-rc3nvme+ #20 PREEMPT(full) [ 5233.306524] Tainted: [O]=OOT_MODULE, [N]=TEST [ 5233.306525] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.17.0-0-gb52ca86e094d-prebuilt.qemu.org 04/01/2014 [ 5233.306527] Workqueue: nvmet-wq nvmet_tcp_release_queue_work [nvmet_tcp] [ 5233.306532] Call Trace: [ 5233.306534] <TASK> [ 5233.306536] dump_stack_lvl+0x73/0xb0 [ 5233.306552] print_deadlock_bug+0x225/0x2f0 [ 5233.306556] __lock_acquire+0x13f0/0x2290 [ 5233.306563] lock_acquire+0xd0/0x300 [ 5233.306565] ? touch_wq_lockdep_map+0x26/0x90 [ 5233.306571] ? __flush_work+0x20b/0x530 [ 5233.306573] ? touch_wq_lockdep_map+0x26/0x90 [ 5233.306577] touch_wq_lockdep_map+0x3b/0x90 [ 5233.306580] ? touch_wq_lockdep_map+0x26/0x90 [ 52 ---truncated---

CVSS v3.1: 7.5
Severity: HIGH
Fixed in: 0
Affected Products: 2

HarborGuard Analysis

Synopsis

This is a recursive locking defect in the Linux kernel's NVMe-over-TCP target (nvmet) subsystem. An attacker reachable over the network, with no authentication required, can trigger the vulnerable teardown code path by initiating and then dropping an NVMe controller connection, causing a recursive flush of the nvmet-wq workqueue. Successful exploitation crashes the affected service, resulting in a denial of service. A patched-image rebuild is available on HarborGuard for environments running an affected kernel version.

HarborGuard Coverage

Detection

Detection of CVE-2026-46304 is available across every HarborGuard environment: the CVE is ingested from upstream feeds (NVD, Linux kernel security advisories) within minutes of publication and matched against all images in customer registries and CI/CD pipelines, including custom-built images that package a vulnerable kernel version.

Available

Triage

HarborGuard scores this finding at CVSS 7.5 (HIGH) and weights it against each environment's compliance policy to determine escalation priority. Triage results are routed to the appropriate team inbox within each customer organization based on image ownership and policy configuration.

Available

Patch

A patched-image rebuild at the fix versions (5.10.258, 5.15.209, and the corresponding upstream commits) is available on HarborGuard for environments running an affected kernel. For customers who opt into auto-remediation, HarborGuard triggers a rebuild, runs a regression test suite, and opens a pull request against affected workloads automatically.

Available

Exploit Conditions

Network reachabilityRequired
The attacker must reach the nvmet-tcp target port over the network; the vulnerable teardown path is triggered by establishing and then dropping an NVMe-over-TCP controller connection remotely.
AuthenticationNot required
No credentials are needed; the exploit is triggered during the unauthenticated NVMe discovery controller handshake and teardown sequence.
Victim interactionNot required
No user or administrator interaction is required; the attacker drives the entire sequence by initiating and then closing the network connection.
Attack complexityDetail
Attack complexity is low; the recursive locking condition is reliably reproducible with a straightforward connect-and-disconnect sequence and requires no special timing or environmental conditions.

Blast Radius

The nvmet-wq workqueue deadlocks on a recursive flush, causing the kernel to hang or panic the nvmet subsystem.
All in-flight NVMe-over-TCP sessions on the affected host are terminated, interrupting block storage access for any workloads backed by that target.
The denial of service persists until the host is rebooted or the kernel module is reloaded, depending on kernel configuration.

How HarborGuard Handles This

Available on HarborGuard: images containing a Linux kernel older than the fix commits (5.10.258 or 5.15.209 stable releases, or the equivalent upstream commit) are flagged immediately upon scan. Where compliance policy permits, auto-remediation customers receive a rebuilt image at the patched kernel version, a regression-test run, and a PR opened against affected workloads; median time from CVE publication to merged patch PR for high-severity issues is around 90 minutes for environments with auto-remediation enabled. For teams that cannot immediately rebuild (for example, bare-metal or VM-deployed kernels outside container scope), HarborGuard recommends applying network policy to restrict access to NVMe-over-TCP target ports (default 4420) to trusted initiator CIDRs only, reducing the network-reachable attack surface until the kernel is updated.

See how HarborGuard automates this

Fix available

04.105.10.2585.15.209551f445a56a11a6457550cddcf39c9ebb8bcacc66.1.1756.6.1406.12.886.18.307.0.77.1-rc2781f47d641432c26c19625b2cdd7f408250975928d66ba89480ff098a58d79003a505f383aa4e9209a4d7222c0955b221e38bb66d10e6bccb672c8a1a696fbbd5240b4ac9b166f7bd4c550882ff543f1aade8abd8b868b6ffa9697aadaea28ec7f65bee6ae5b0cad163833e10b271e9becc05d81dae56e5fee6e20c4bc9eae542a0954a368449532383169d4

Affected packages

Linux / Linux
< ae5b0cad163833e10b271e9becc05d81dae56e5f (from 06406d81a2d7cfb8abcc4fa6cdfeb8e5897007c5) · < 8d66ba89480ff098a58d79003a505f383aa4e920 (from 06406d81a2d7cfb8abcc4fa6cdfeb8e5897007c5) · < a696fbbd5240b4ac9b166f7bd4c550882ff543f1 (from 06406d81a2d7cfb8abcc4fa6cdfeb8e5897007c5) · < 9a4d7222c0955b221e38bb66d10e6bccb672c8a1 (from 06406d81a2d7cfb8abcc4fa6cdfeb8e5897007c5) · < ee6e20c4bc9eae542a0954a368449532383169d4 (from 06406d81a2d7cfb8abcc4fa6cdfeb8e5897007c5) · < 781f47d641432c26c19625b2cdd7f40825097592 (from 06406d81a2d7cfb8abcc4fa6cdfeb8e5897007c5)
Linux / Linux
4.10
Fixed in 0, 5.10.258, 5.15.209, 6.1.175, 6.6.140, 6.12.88, 6.18.30, 7.0.7, 7.1-rc2

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

References

Metrics

Get notified

HarborGuard Analysis

Synopsis

HarborGuard Coverage

Exploit Conditions

Blast Radius

How HarborGuard Handles This

Fix available