CVE-2026-46277

Source
https://cve.org/CVERecord?id=CVE-2026-46277
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2026-46277.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2026-46277
Downstream
Related
Published
2026-06-08T15:41:19.760Z
Modified
2026-06-18T03:57:36.698243429Z
Severity
  • 7.8 (High) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVSS Calculator
Summary
mm/zone_device: do not touch device folio after calling ->folio_free()
Details

In the Linux kernel, the following vulnerability has been resolved:

mm/zonedevice: do not touch device folio after calling ->foliofree()

The contents of a device folio can immediately change after calling ->foliofree(), as the folio may be reallocated by a driver with a different order. Instead of touching the folio again to extract the pgmap, use the local stack variable when calling percpurefputmany().

Database specific
{
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/46xxx/CVE-2026-46277.json",
    "cna_assigner": "Linux"
}
References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
d245f9b4ab806733a77e51a218ca7b8bc3135cd9
Fixed
85be0a262e39c706edb53c88af8afde2e98222ba
Fixed
39928984956037cabd304321cb8f342e47421db5

Database specific

source
"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2026-46277.json"

Linux / Kernel

Package

Name
Kernel

Affected ranges

Type
ECOSYSTEM
Events
Introduced
6.19.0
Fixed
7.0.4

Database specific

source
"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2026-46277.json"