CVE-2026-53231 | In the Linux kernel, the following vulnerability has been re…

Description

In the Linux kernel, the following vulnerability has been resolved: net: phy: don't try to setup PHY-driven SFP cages when using genphy We don't have support for PHY-driver SFP cages with the genphy code. On top of that, it was found by sashiko that running sfp_bus_add_upstream() for genphy deadlocks, as for genphy the PHY probing runs under RTNL, which isn't the case for non-genphy drivers. This problem was reproduced, and does lead to a deadlock on RTNL. Before the blamed commit, the phy_sfp_probe() call was made by individual PHY drivers, so there was no way to get to the SFP probing path when using genphy. Let's therefore only run phy_sfp_probe when not using genphy.

Metadata

CVE ID: CVE-2026-53231
State: PUBLISHED
Assigner: Linux
Reserved: 2026-06-09 07:44 UTC
Published: 2026-06-25 08:39 UTC
Last updated: 2026-06-25 08:39 UTC
Vendor / Product: Linux / Linux
Sources: cve.org · NVD

Severity & Metrics

No CVSS data available.

Affected products (2)

Vendor	Product	Platform	Versions
Linux	Linux	—	bad869b5e41a08424ff130fd6bb41b854be70095 < ef8d739eee6f85303cbecebc01eb72f063de74e0, bad869b5e41a08424ff130fd6bb41b854be70095 < 5a0082ec20a05ef2378410323a5089a8f1786f4a
Linux	Linux	—	7.0, 0 < 7.0, 7.0.13 ≤ 7.0., 7.1 ≤

References (2)