Improper control of a resource through its lifetime in Linux kernel - CVE-2026-53363
Published: July 11, 2026
Linux kernel
Detailed vulnerability description
The vulnerability allows a local user to cause a denial of service.
The vulnerability exists due to improper state management in iptfs_consume_frags() when transferring paged fragments between socket buffers. A local user can trigger processing of fragments backed by read-only page-cache pages to cause a denial of service.
The issue occurs because the shared-fragment marker is not preserved, which can cause ESP to make an incorrect decision about whether in-place encryption is safe.