CVE-2026-23002

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A flaw exists in the Linux kernel’s lib/buildid component related to handling kernel NULL pointer dereferences during file reading in sleepable contexts. Specifically, the issue involves using direct page cache access via read cache folio() which can lead to a kernel crash. The resolution involves converting to kernel read() for sleepable contexts to utilize the standard kernel file reading interface, simplifying the faultable code path. The fix prevents a "BUG: unable to handle kernel NULL pointer dereference in filemap read folio". The initial fix focuses on sleepable contexts to simplify backporting to stable kernels, with plans for future improvements to support non-sleepable contexts.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.