In the Linux kernel, the following vulnerability has been resolved:
s390/uv: Don't call foliowaitwriteback() without a folio reference
foliowaitwriteback() requires that no spinlocks are held and that a folio reference is held, as documented. After we dropped the PTL, the folio could get freed concurrently. So grab a temporary reference.