CVE-2026-53167

No CVSS score published · EPSS: 0.0017 (6.1 percentile)

Source data as of:

At a glance

Severity
No CVSS score published
CVSS
No CVSS score in the NVD record
EPSS
0.0017 (6.1 percentile) · FIRST.org
CISA KEV
No
Published
2026-06-25 · Modified: 2026-06-25
References
Jump to references (3)

CVSS / EPSS / KEV

EPSS 0.0017 6.1 percentile Source: FIRST.org
CISA KEV No Source: CISA

Source — CVSS: NVD · EPSS: FIRST.org · KEV: CISA. Data & Sources

Description

In the Linux kernel, the following vulnerability has been resolved: fuse: limit FUSE_NOTIFY_RETRIEVE to uptodate folios FUSE_NOTIFY_RETRIEVE must be limited to uptodate folios; !uptodate folios can contain uninitialized data. Since FUSE_NOTIFY_RETRIEVE is intended to only return data that is already in the page cache and not wait for data from the FUSE daemon, treat !uptodate folios as if they weren't present. This only has security impact on systems that don't enable automatic zero-initialization of all page allocations via CONFIG_INIT_ON_ALLOC_DEFAULT_ON or init_on_alloc=1.

Record details

CVE ID
CVE-2026-53167
EPSS
0.0017 (6.1 percentile) — 2026-06-26
CISA KEV
No
Affected configurations (CPE)
0
Published
2026-06-25
Modified
2026-06-25
Status
Received

References

Reference URLs as listed by NVD, grouped by a mechanical match on the link's host/pattern. Labels describe the link type only.

Related records

Other records sharing a factual facet, for cross-reference. A descriptive neighbourhood — ordering does not imply priority and is not a recommendation.

Published the same year

CVE-2026-12485 CRITICAL CVSS 10.0 CVE-2026-12537 CRITICAL CVSS 10.0 CVE-2026-12846 CRITICAL CVSS 10.0 CVE-2026-12847 CRITICAL CVSS 10.0
← Back to all records