Volerion logoVolerion
Volerion logoVolerion

Linux Kernel ublk Driver Reference Count Leak Vulnerability

Vulnerability

A vulnerability in the Linux kernel's ublk driver has been addressed, concerning a reference count leak that could lead to improper user copy operations. When a ublk server process releases a character device file, any pending requests retain an initial reference count, which, if not properly decremented, can allow unauthorized data operations on completed requests. This issue, which triggered warnings about the reference count in the ublk request queue, has been fixed by ensuring that all active references are properly reset when the ublk server exits.

Impact

Exploitation of this vulnerability could lead to a reference count leak, allowing improper user copy operations on ublk requests, and triggering warnings about the leaked reference count in the ublk request queue.

Remediation

Users can apply the latest patch available in the Linux kernel stable tree to address this vulnerability.

Added: Jan 13, 2026, 5:05 PM
Updated: Jan 13, 2026, 5:05 PM

Vulnerability Rating

Custom Algorithm
spread
9.0
impact
0.6
exploitability
5.3
remediation
7.7
relevance
2.0
threat
3.2
urgency
2.9
incentive
1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.