Description
In the Linux kernel, the following vulnerability has been resolved:

ceph: put folios not suitable for writeback

The batch holds references to the folios (see `filemap_get_folios`,
`folio_batch_release`), so we need to `folio_put` the folios we remove.

Tested on v6.18.
Published: 2026-06-24
Score: n/a
EPSS: n/a
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

In the Linux kernel, a bug was found where folios that were not suitable for writeback were removed from a batch without first invoking the required memory‑management routine. This omission violates kernel memory‑management contracts and can lead to memory corruption. An attacker could trigger a kernel panic or cause a denial‑of‑service condition for the entire system.

Affected Systems

All Linux kernel configurations that incorporate the Ceph subsystem and are running a version earlier than 6.18 are affected. The issue applies to both major Linux vendor releases, as implied by the generic kernel CPE classification.

Risk and Exploitability

The EPSS score is not available, the CVSS rating is not provided, and the vulnerability is not listed in the CISA KEV catalog. The description does not detail an attack vector or the required privileges. Typical kernel memory‑management bugs of this type would generally necessitate local access with elevated privileges, but this remains an inference based on the class of vulnerability.

Generated by OpenCVE AI on June 24, 2026 at 20:18 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade the Linux kernel to version 6.18 or later where the defect is fixed.
  • If an immediate kernel upgrade is infeasible, apply the patch commit 544576f0f05c4a759806acddfaaeb686f14fb4b0 to the kernel source tree.
  • Monitor system logs (e.g., dmesg) for folio_put warnings or unexpected kernel panics to detect possible exploitation attempts.

Generated by OpenCVE AI on June 24, 2026 at 20:18 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Wed, 24 Jun 2026 20:45:00 +0000

Type Values Removed Values Added
Weaknesses CWE-416

Wed, 24 Jun 2026 17:15:00 +0000

Type Values Removed Values Added
Description In the Linux kernel, the following vulnerability has been resolved: ceph: put folios not suitable for writeback The batch holds references to the folios (see `filemap_get_folios`, `folio_batch_release`), so we need to `folio_put` the folios we remove. Tested on v6.18.
Title ceph: put folios not suitable for writeback
First Time appeared Linux
Linux linux Kernel
CPEs cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Vendors & Products Linux
Linux linux Kernel
References

Subscriptions

Linux Linux Kernel
cve-icon MITRE

Status: PUBLISHED

Assigner: Linux

Published:

Updated: 2026-06-24T16:28:41.044Z

Reserved: 2026-06-09T07:44:35.373Z

Link: CVE-2026-52960

cve-icon Vulnrichment

No data.

cve-icon NVD

No data.

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-06-24T20:30:04Z

Weaknesses