CVE-2026-53303

In the Linux kernel, the following vulnerability has been resolved:

f2fs: protect extension list reading with sb lock in f2fs sbi show()

In f2fs sbi show(), the extension list, extension count and hot ext count are read without holding sbi->sb lock. If a concurrent sysfs store modifies the extension list via f2fs update extension list(), the show path may read inconsistent count and array contents, potentially leading to out-of-bounds access or displaying stale data.

Fix this by holding sb lock around the entire extension list read and format operation.