What is CVE-2026-53168?

CVE-2026-53168 is a unscored severity Linux kernel vulnerability. CVE-2026-53168 has not been confirmed as actively exploited and is not listed in the CISA KEV catalog.

What is the CVSS score for CVE-2026-53168?

CVE-2026-53168 has a CVSS score of pending NVD analysis out of 10, rated awaiting scoring severity.

Is there a patch available for CVE-2026-53168?

No patch is currently available for CVE-2026-53168. Monitor the NIST NVD and your Linux distribution's security advisories for updates.

Is CVE-2026-53168 actively exploited?

CVE-2026-53168 has not been confirmed as actively exploited and is not listed in the CISA KEV catalog.

CVE-2026-53168

In the Linux kernel, the following vulnerability has been resolved: fuse: reject fuse_notify() pagecache ops on directories The operations FUSE_NOTIFY_STORE and FUSE_NOTIFY_RETRIEVE allow the FUSE daemon to actively write/read pagecache contents. For directories with FOPEN_CACHE_DIR, the pagecache is used as kernel-internal cache storage, and userspace is not supposed to have direct access to this cache - in particular, fuse_parse_cache() will hit WARN_ON() if the cache contains bogus data. Reject FUSE_NOTIFY_STORE and FUSE_NOTIFY_RETRIEVE on anything other than regular files with -EINVAL.

Package Linux Kernel

Published 2026-06-25

Last modified 2026-06-25

Patch available

Awaiting data