CVE-2026-53167 PUBLISHED

fuse: limit FUSE_NOTIFY_RETRIEVE to uptodate folios

Assigner: Linux
Reserved: 09.06.2026 Published: 25.06.2026 Updated: 25.06.2026

In the Linux kernel, the following vulnerability has been resolved:

fuse: limit FUSE_NOTIFY_RETRIEVE to uptodate folios

FUSE_NOTIFY_RETRIEVE must be limited to uptodate folios; !uptodate folios can contain uninitialized data. Since FUSE_NOTIFY_RETRIEVE is intended to only return data that is already in the page cache and not wait for data from the FUSE daemon, treat !uptodate folios as if they weren't present.

This only has security impact on systems that don't enable automatic zero-initialization of all page allocations via CONFIG_INIT_ON_ALLOC_DEFAULT_ON or init_on_alloc=1.

Product Status

Vendor Linux
Product Linux
Versions Default: unaffected
  • affected from 2d45ba381a74a743eeaa2b06c7c5c0d2bf73ba1a to 56763afa013444a9d84ca1b74e4b7130942177ba (excl.)
  • affected from 2d45ba381a74a743eeaa2b06c7c5c0d2bf73ba1a to 1fb8735a3a4d894f8c1f90b741a3ab1d3817f9bd (excl.)
  • affected from 2d45ba381a74a743eeaa2b06c7c5c0d2bf73ba1a to 4e3d1b2c48ca6c55f1e9ca7f8dccc76f120f276c (excl.)
Vendor Linux
Product Linux
Versions Default: affected
  • Version 2.6.36 is affected
  • unaffected from 0 to 2.6.36 (excl.)
  • unaffected from 6.18.36 to 6.18.* (incl.)
  • unaffected from 7.0.13 to 7.0.* (incl.)
  • unaffected from 7.1 to * (incl.)

References