Linux Kernel: Critical Security and Memory Management Fixes

Transcript

Good morning, this is your Linux Kernel development briefing for May 27th, 2026.

Linus Torvalds committed three significant merge operations yesterday, focusing on critical fixes and regressions.

The first merge brings NFS daemon security fixes from Chuck Lever's tree. This addresses two regressions: tightened bounds checking for sunrpc cache hash tables and removal of key material from ftrace logs to prevent sensitive data exposure. The update also includes a stable fix for lockd's NLM TEST procedure implementation. Changes span the lockd subsystem, NFSD components, and sunrpc cache handling.

The second merge pulls thirteen hotfixes from Andrew Morton's memory management tree. Nine patches target MM subsystem issues, with nine marked for stable backporting. Notable changes include reverting problematic page pool implementations, fixing a page table leak in device migration, validating exit signals in kernel_clone, and addressing a use-after-free bug in the zram driver. The merge also includes maintainer email updates following the General Electric Healthcare spin-off.

The third merge addresses a critical use-after-free vulnerability in KUnit's debugfs implementation. The bug occurred when using kunit.filter as the executor freed dynamically allocated resources after boot-time tests. This caused fatal hardware exceptions on CHERI RISC-V architectures and silent memory corruption on others. The fix couples filtered suite memory allocation lifetime to the KUnit subsystem itself, transferring ownership to a global tracker for proper cleanup.

What's next: These fixes target both current stable releases and recent 7.1 developments, indicating continued focus on regression resolution as the kernel approaches the next release candidate. The security-focused nature of these patches suggests heightened attention to vulnerability mitigation.

That's your kernel update for today. I'm your host, reporting on the latest from torvalds/linux.