Improper control of a resource through its lifetime in Linux kernel - CVE-2026-53018
Published: June 25, 2026
Linux kernel
Detailed vulnerability description
The vulnerability allows a local user to cause a denial of service.
The vulnerability exists due to improper state management in the f2fs garbage collection logic when processing already updated pages during garbage collection. A local user can trigger garbage collection on crafted filesystem state to cause a denial of service.
The issue was identified during fuzz testing and results in a kernel BUG triggered by reading a page that had already been marked uptodate.