CVE-2026-53189 - Vulnerability Details

In the Linux kernel, the following vulnerability has been resolved: mm/huge_memory: update file PMD counter before folio_put() __split_huge_pmd_locked() updates the file/shmem RSS counter after dropping the PMD mapping's folio reference. If folio_put() drops the last reference, mm_counter_file() can later read freed folio state via folio_test_swapbacked(). Move the counter update before folio_put().

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

No EPSS score available.

Key SSVC decision points have not yet been added.

Vendors	Products
Linux	Linux Kernel

No data.

References

Link	Providers
https://git.kernel.org/stable/c/108963978a681c0c468d279cac2b930c27672877
https://git.kernel.org/stable/c/459771c9cf30f378bdbd30fc65d17f7eb931bb59
https://git.kernel.org/stable/c/5f5b604e1e6bde4e889199168ee80fe8306d06ad
https://git.kernel.org/stable/c/6c29a8ba084e89499ca77b947e07ae817f9c16ce
https://git.kernel.org/stable/c/84b3212b166b446faea27ebebb7161405ffceef9
https://git.kernel.org/stable/c/8d878059924f12c1bc24556a92ec56add74de3c8
https://git.kernel.org/stable/c/ae9d4caf6f133e884cf5fcda4982c493b35e5194
https://git.kernel.org/stable/c/ed5b030931292c94133437ac5e5ff580e498eabd

History

Thu, 25 Jun 2026 09:15:00 +0000

Type	Values Removed	Values Added
Description		In the Linux kernel, the following vulnerability has been resolved: mm/huge_memory: update file PMD counter before folio_put() __split_huge_pmd_locked() updates the file/shmem RSS counter after dropping the PMD mapping's folio reference. If folio_put() drops the last reference, mm_counter_file() can later read freed folio state via folio_test_swapbacked(). Move the counter update before folio_put().
Title		mm/huge_memory: update file PMD counter before folio_put()
First Time appeared		Linux Linux linux Kernel
CPEs		cpe:2.3:o:linux:linux_kernel::::::::
Vendors & Products		Linux Linux linux Kernel
References		https://git.kernel.org/stable/c/108963978a681c0c468d279cac2b930c27672877 https://git.kernel.org/stable/c/459771c9cf30f378bdbd30fc65d17f7eb931bb59 https://git.kernel.org/stable/c/5f5b604e1e6bde4e889199168ee80fe8306d06ad https://git.kernel.org/stable/c/6c29a8ba084e89499ca77b947e07ae817f9c16ce https://git.kernel.org/stable/c/84b3212b166b446faea27ebebb7161405ffceef9 https://git.kernel.org/stable/c/8d878059924f12c1bc24556a92ec56add74de3c8 https://git.kernel.org/stable/c/ae9d4caf6f133e884cf5fcda4982c493b35e5194 https://git.kernel.org/stable/c/ed5b030931292c94133437ac5e5ff580e498eabd

MITRE

Status: PUBLISHED

Assigner: Linux

Published: 2026-06-25T08:39:01.708Z

Updated: 2026-06-25T08:39:01.708Z

Reserved: 2026-06-09T07:44:35.390Z

Link: CVE-2026-53189

Vulnrichment

No data.

NVD

No data.

Redhat

No data.

OpenCVE Enrichment

No data.

Metrics

Affected Vendors & Products

Metrics

Affected Vendors & Products

JSON object

JSON object

JSON object

JSON object

JSON object