{"dataType":"CVE_RECORD","dataVersion":"5.2","cveMetadata":{"cveId":"CVE-2026-53168","assignerOrgId":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","state":"PUBLISHED","assignerShortName":"Linux","dateReserved":"2026-06-09T07:44:35.389Z","datePublished":"2026-06-25T08:38:47.420Z","dateUpdated":"2026-06-25T08:38:47.420Z"},"containers":{"cna":{"providerMetadata":{"orgId":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","shortName":"Linux","dateUpdated":"2026-06-25T08:38:47.420Z"},"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nfuse: reject fuse_notify() pagecache ops on directories\n\nThe operations FUSE_NOTIFY_STORE and FUSE_NOTIFY_RETRIEVE allow the\nFUSE daemon to actively write/read pagecache contents.\n\nFor directories with FOPEN_CACHE_DIR, the pagecache is used as\nkernel-internal cache storage, and userspace is not supposed to have\ndirect access to this cache - in particular, fuse_parse_cache() will hit\nWARN_ON() if the cache contains bogus data.\n\nReject FUSE_NOTIFY_STORE and FUSE_NOTIFY_RETRIEVE on anything other than\nregular files with -EINVAL."}],"affected":[{"product":"Linux","vendor":"Linux","defaultStatus":"unaffected","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","programFiles":["fs/fuse/dev.c"],"versions":[{"version":"5d7bc7e8680c7ca4c8a4f139ce2a54ccb8131ef0","lessThan":"15487f98863dc7156ed43c5be26d478beb82ba35","status":"affected","versionType":"git"},{"version":"5d7bc7e8680c7ca4c8a4f139ce2a54ccb8131ef0","lessThan":"bd23fa0c16c5c86e5b7713224ffbb87d9db81cca","status":"affected","versionType":"git"},{"version":"5d7bc7e8680c7ca4c8a4f139ce2a54ccb8131ef0","lessThan":"9dbf1b2fadfc6c40805631d8a8276d1639fc9ab6","status":"affected","versionType":"git"},{"version":"5d7bc7e8680c7ca4c8a4f139ce2a54ccb8131ef0","lessThan":"dd92773d4d9cea010474eb08a5133c14ff6ab53a","status":"affected","versionType":"git"},{"version":"5d7bc7e8680c7ca4c8a4f139ce2a54ccb8131ef0","lessThan":"99c317d7f8b7bbf3de16d20a01f363e390114cea","status":"affected","versionType":"git"},{"version":"5d7bc7e8680c7ca4c8a4f139ce2a54ccb8131ef0","lessThan":"12df4cfa738aefff21756728e91056d7defb0fe6","status":"affected","versionType":"git"},{"version":"5d7bc7e8680c7ca4c8a4f139ce2a54ccb8131ef0","lessThan":"e692f0cb86204dcdb9dddc0b355407eda6394a67","status":"affected","versionType":"git"},{"version":"5d7bc7e8680c7ca4c8a4f139ce2a54ccb8131ef0","lessThan":"9c954499d43aefac01c5dfb57a82b13d2dcf4b94","status":"affected","versionType":"git"}]},{"product":"Linux","vendor":"Linux","defaultStatus":"affected","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","programFiles":["fs/fuse/dev.c"],"versions":[{"version":"4.20","status":"affected"},{"version":"0","lessThan":"4.20","status":"unaffected","versionType":"semver"},{"version":"5.10.259","lessThanOrEqual":"5.10.*","status":"unaffected","versionType":"semver"},{"version":"5.15.210","lessThanOrEqual":"5.15.*","status":"unaffected","versionType":"semver"},{"version":"6.1.176","lessThanOrEqual":"6.1.*","status":"unaffected","versionType":"semver"},{"version":"6.6.143","lessThanOrEqual":"6.6.*","status":"unaffected","versionType":"semver"},{"version":"6.12.94","lessThanOrEqual":"6.12.*","status":"unaffected","versionType":"semver"},{"version":"6.18.36","lessThanOrEqual":"6.18.*","status":"unaffected","versionType":"semver"},{"version":"7.0.13","lessThanOrEqual":"7.0.*","status":"unaffected","versionType":"semver"},{"version":"7.1","lessThanOrEqual":"*","status":"unaffected","versionType":"original_commit_for_fix"}]}],"cpeApplicability":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"4.20","versionEndExcluding":"5.10.259"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"4.20","versionEndExcluding":"5.15.210"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"4.20","versionEndExcluding":"6.1.176"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"4.20","versionEndExcluding":"6.6.143"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"4.20","versionEndExcluding":"6.12.94"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"4.20","versionEndExcluding":"6.18.36"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"4.20","versionEndExcluding":"7.0.13"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"4.20","versionEndExcluding":"7.1"}]}]}],"references":[{"url":"https://git.kernel.org/stable/c/15487f98863dc7156ed43c5be26d478beb82ba35"},{"url":"https://git.kernel.org/stable/c/bd23fa0c16c5c86e5b7713224ffbb87d9db81cca"},{"url":"https://git.kernel.org/stable/c/9dbf1b2fadfc6c40805631d8a8276d1639fc9ab6"},{"url":"https://git.kernel.org/stable/c/dd92773d4d9cea010474eb08a5133c14ff6ab53a"},{"url":"https://git.kernel.org/stable/c/99c317d7f8b7bbf3de16d20a01f363e390114cea"},{"url":"https://git.kernel.org/stable/c/12df4cfa738aefff21756728e91056d7defb0fe6"},{"url":"https://git.kernel.org/stable/c/e692f0cb86204dcdb9dddc0b355407eda6394a67"},{"url":"https://git.kernel.org/stable/c/9c954499d43aefac01c5dfb57a82b13d2dcf4b94"}],"title":"fuse: reject fuse_notify() pagecache ops on directories","x_generator":{"engine":"bippy-1.2.0"}}}}