In the Linux kernel, the following vulnerability has been resolved:
mm/hugememory: update file PMD counter before folioput()
__splithugepmdlocked() updates the file/shmem RSS counter after dropping the PMD mapping's folio reference. If folioput() drops the last reference, mmcounterfile() can later read freed folio state via foliotestswapbacked().
Move the counter update before folio_put().
{
"osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/53xxx/CVE-2026-53189.json",
"cna_assigner": "Linux"
}