CVE Catalog

CVE-2026-46013

MediumCVSS 5.5
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.16%

5th percentile - higher than 5% of all known CVEs

Summary

A vulnerability has been identified in the Linux kernel within the put_folios function that may lead to incorrect processing of physical addresses. The issue arises from an incorrect PFN to physical address conversion and missing checks in the cleanup loop.

Risk Assessment

Organizations may be exposed to incorrect memory data processing, potentially leading to unexpected system behavior or data integrity violations.

Recommendation

It is recommended to update the Linux kernel to the latest version to eliminate this vulnerability and ensure proper physical address processing.

Original NVD description (English source)

In the Linux kernel, the following vulnerability has been resolved: mm/memfd_luo: fix physical address conversion in put_folios cleanup In memfd_luo_retrieve_folios()'s put_folios cleanup path: 1. kho_restore_folio() expects a phys_addr_t (physical address) but receives a raw PFN (pfolio->pfn). This causes kho_restore_page() to check the wrong physical address (pfn << PAGE_SHIFT instead of the actual physical address). 2. This loop lacks the !pfolio->pfn check that exists in the main retrieval loop and memfd_luo_discard_folios(), which could incorrectly process sparse file holes where pfn=0. Fix by converting PFN to physical address with PFN_PHYS() and adding the !pfolio->pfn check, matching the pattern used elsewhere in this file. This issue was identified by the AI review. https://sashiko.dev/#/patchset/[email protected]

Vulnerability data from NVD (NIST) · CISA KEV · EPSS