CVE-2026-23097

Name of the Vulnerable Software and Affected Versions Linux Kernel (affected versions not specified)

Description The Linux kernel contains a deadlock issue related to lock ordering within hugetlb file folios during page migration. Specifically, a deadlock can occur when one task holds a folio lock and attempts to acquire a read lock on i mmap rwsem, while another task holds a write lock on i mmap rwsem and attempts to acquire the folio lock. This situation arises during the execution of migrate pages() and hugetlbfs fallocate(). The issue stems from incorrect lock ordering in the migration path, deviating from the documented order in mm/rmap.c. The problem was partially addressed in a previous commit (c0d0381ade79) but was incorrectly reverted for file hugetlb pages by commit 336bf30eb765. The functions involved include migrate hugetlbs(), unmap and move huge page(), remove migration ptes(), rmap walk file(), i mmap lock read(), hugetlbfs punch hole(), hugetlbfs zero partial page(), filemap lock hugetlb folio(), and filemap get folio().

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.