Linux Kernel Vulnerability Affecting io_uring/napi Polling Mechanism
CVE-2026-53321

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 26 June 2026

What is CVE-2026-53321?

A vulnerability exists in the Linux kernel related to the io_uring and napi subsystems, where there is no cap on the time allowed for napi to poll when no events are detected. This indefinite polling could lead to kernel issues indicating that the task is stuck. Implementing a cap of 10 milliseconds for this polling mechanism resolves the problem, ensuring that it remains within acceptable limits to avoid triggering preemption complaints while still functioning effectively.

Affected Version(s)

Linux 8d0c12a80cdeb80d5e0510e96d38fe551ed8e9b5 < 39767f944a8c9e696566c37ad5b20131406c4b8d

Linux 8d0c12a80cdeb80d5e0510e96d38fe551ed8e9b5

References

https://git.kernel.org/stable/c/39767f944a8c9e696566c37ad...

https://git.kernel.org/stable/c/cb3af525f8dfb8930f0c123e5...

https://git.kernel.org/stable/c/df8599ee18c0e5fe343ffe0b4...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 26, 2026
Vulnerability Reserved
Jun 9, 2026

CVE-2026-53321 Data

JSON