Description

In the Linux kernel, the following vulnerability has been resolved: iomap: fix invalid folio access when i_blkbits differs from I/O granularity Commit aa35dd5cbc06 ("iomap: fix invalid folio access after folio_end_read()") partially addressed invalid folio access for folios without an ifs attached, but it did not handle the case where 1 << inode->i_blkbits matches the folio size but is different from the granularity used for the IO, which means IO can be submitted for less than the full folio for the !ifs case. In this case, the condition: if (*bytes_submitted == folio_len) ctx->cur_folio = NULL; in iomap_read_folio_iter() will not invalidate ctx->cur_folio, and iomap_read_end() will still be called on the folio even though the IO helper owns it and will finish the read on it. Fix this by unconditionally invalidating ctx->cur_folio for the !ifs case.

INFO

Published Date :

2026-04-22T13:53:54.224Z

Last Modified :

2026-04-22T13:53:54.224Z

Source :

Linux
AFFECTED PRODUCTS

The following products are affected by CVE-2026-31463 vulnerability.

Vendors Products
Linux
  • Linux Kernel
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2026-31463.

URL Resource
https://git.kernel.org/stable/c/4a927f670cdb0def226f9f85f42a9f19d9e09c88 cve-icon cve-icon
https://git.kernel.org/stable/c/bd71fb3fea9945987053968f028a948997cba8cc cve-icon cve-icon
https://lore.kernel.org/linux-cve-announce/2026042252-CVE-2026-31463-7bc8@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2026-31463 cve-icon
https://www.cve.org/CVERecord?id=CVE-2026-31463 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System