CVE-2026-23375Expired Pointer Dereference in Linux

CWE-825Expired Pointer Dereference7 documents6 sources
Severity
7.0HIGH
No vector
EPSS
0.0%
top 93.81%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
LinuxLinux KernelDebian Linux
Timeline
PublishedMar 25

Description

In the Linux kernel, the following vulnerability has been resolved: mm: thp: deny THP for files on anonymous inodes file_thp_enabled() incorrectly allows THP for files on anonymous inodes (e.g. guest_memfd and secretmem). These files are created via alloc_file_pseudo(), which does not call get_write_access() and leaves inode->i_writecount at 0. Combined with S_ISREG(inode->i_mode) being true, they appear as read-only regular files when CONFIG_READ_ONLY_THP_FOR_FS is enabled, making them eligib

Affected Packages4 packages

Linuxlinux/linux_kernel6.8.06.12.78+2
Debianlinux/linux_kernel< 6.19.8-1
CVEListV5linux/linux7fbb5e188248c50f737720825da1864ce42536d108de46a75f91a6661bc1ce0a93614f4bc313c581+4
debiandebian/linux< linux 6.19.8-1 (forky)

🔴Vulnerability Details

3
OSV
CVE-2026-23375: In the Linux kernel, the following vulnerability has been resolved: mm: thp: deny THP for files on anonymous inodes file_thp_enabled() incorrectly all2026-03-25
GHSA
GHSA-9ghh-p583-m6m8: In the Linux kernel, the following vulnerability has been resolved: mm: thp: deny THP for files on anonymous inodes file_thp_enabled() incorrectly a2026-03-25
OSV
mm: thp: deny THP for files on anonymous inodes2026-03-25

📋Vendor Advisories

2
Red Hat
kernel: mm: thp: deny THP for files on anonymous inodes2026-03-25
Debian
CVE-2026-23375: linux - In the Linux kernel, the following vulnerability has been resolved: mm: thp: de...2026

🕵️Threat Intelligence

1
Wiz
CVE-2026-23375 Impact, Exploitability, and Mitigation Steps | Wiz