CVE-2026-23375

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description The Linux kernel contains a flaw within the mm/thp subsystem related to transparent huge pages (THP). The file thp enabled() function incorrectly permits THP for files residing on anonymous inodes, such as those created by guest memfd and secretmem. This occurs because these files do not call get write access(), leaving the inode's write count at zero, falsely indicating they are read-only regular files when CONFIG READ ONLY THP FOR FS is enabled. This can lead to issues when THP attempts to collapse pages, as the guest memfd fault handler does not support large folios, triggering a warning. In the case of secretmem, it can result in a kernel crash during page copying through the direct map, as secretmem pages are removed from the direct map. While memory failure recovery mitigates the crash in some upstream versions, it still generates false memory failure reports. The issue stems from the lack of a check for IS ANON FILE(inode) within file thp enabled().

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.