Impact
The vulnerability occurs in the Linux kernel’s Ceph subsystem when folios that are not suitable for writeback are removed from a batch without first releasing their reference count via folio_put. This omission violates the kernel’s memory‑management protocol and can corrupt kernel memory. A successful exploitation could result in a kernel panic or a denial‑of‑service condition for the affected system.
Affected Systems
All Linux kernel builds that include the Ceph subsystem and have not applied the fix commit are at risk. The fix was validated on kernel version 6.18, indicating that kernel versions prior to 6.18 are likely affected; this version information is inferred from the testing note and is not explicitly enumerated in the asset list.
Risk and Exploitability
The CVSS score of 7.5 reflects a high severity, while the EPSS score of <1% suggests a low probability of exploitation at present. The vulnerability is not listed in the CISA KEV catalog. No explicit attack vector is detailed in the advisory, but kernel‑level memory‑corruption bugs of this nature typically require local access with elevated privileges; this is an inference based on the type of flaw.
OpenCVE Enrichment