CVE-2026-23177

*** Pendiente de traducción *** In the Linux kernel, the following vulnerability has been resolved:<br /> <br /> mm, shmem: prevent infinite loop on truncate race<br /> <br /> When truncating a large swap entry, shmem_free_swap() returns 0 when the<br /> entry&amp;#39;s index doesn&amp;#39;t match the given index due to lookup alignment. The<br /> failure fallback path checks if the entry crosses the end border and<br /> aborts when it happens, so truncate won&amp;#39;t erase an unexpected entry or<br /> range. But one scenario was ignored.<br /> <br /> When `index` points to the middle of a large swap entry, and the large<br /> swap entry doesn&amp;#39;t go across the end border, find_get_entries() will<br /> return that large swap entry as the first item in the batch with<br /> `indices[0]` equal to `index`. The entry&amp;#39;s base index will be smaller<br /> than `indices[0]`, so shmem_free_swap() will fail and return 0 due to the<br /> "base