CVE-2026-53323
Severity CVSS v4.0:
Pending analysis
Type:
Unavailable / Other
Publication date:
26/06/2026
Last modified:
30/06/2026
Description
In the Linux kernel, the following vulnerability has been resolved:<br />
<br />
net: dsa: remove redundant netdev_lock_ops() from conduit ethtool ops<br />
<br />
DSA replaces the conduit (master) device&#39;s ethtool_ops with its own<br />
wrappers that aggregate stats from both the conduit and DSA switch<br />
ports. Taking the lock again inside the DSA wrappers causes a deadlock.<br />
<br />
Stumbled upon this when booting qemu with fbnic and CONFIG_NET_DSA_LOOP=y<br />
(which looks like some kind of testing device that auto-populates the ports<br />
of eth0). `ethtool -i` is enough to deadlock. This means we have basically zero<br />
coverage for DSA stuff with real ops locked devs.<br />
<br />
Remove the redundant netdev_lock_ops()/netdev_unlock_ops() calls from<br />
the DSA conduit ethtool wrappers.



