CVE-2026-46150

HIGH EPSS 3.9%
Published May 28, 20261mo ago · Modified Jun 17, 20261w ago
7.1 CVSS 3.1
High
Find Similar
Published May 28, 2026 1mo ago
Last Modified Jun 17, 2026 1w ago

Description

In the Linux kernel, the following vulnerability has been resolved: fanotify: fix false positive on permission events fsnotify_get_mark_safe() may return false for a mark on an unrelated group, which results in bypassing the permission check. Fix by skipping over detached marks that are not in the current group.

CVSS Details

Base Score
7.1
Exploitability
1.8
Impact
5.2
Vector string
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N
Attack Vector Local
Attack Complexity Low
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality High
Integrity High
Availability None

Threat Intelligence

EPSS Exploit Probability
3.9% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Affected Products 8

VendorProductVersionRange
linuxlinux_kernel*≥4.12  –  <5.10.258
linuxlinux_kernel*≥5.11  –  <5.15.209
linuxlinux_kernel*≥5.16  –  <6.1.175
linuxlinux_kernel*≥6.2  –  <6.6.140
linuxlinux_kernel*≥6.7  –  <6.12.88
linuxlinux_kernel*≥6.13  –  <6.18.30
linuxlinux_kernel*≥6.19  –  <7.0.7
linuxlinux_kernel7.1any

References 8

  • git.kernel.org https://git.kernel.org/stable/c/04bb66be92f48ed13c3faf1139d892df228789bc
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/4a7611ad653785fcdea5ff5f4441e2b7d05b7f11
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/7746e3bd4cc19b5092e00d32d676e329bfcb6900
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/7baa02b0ae9d17ec5f08836d8ea88ce1927d0678
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/895ebbedf88318607c24acc0f591c74b165e1d0a
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/a24765332e129c1916d5a6615418b75599b8fcdc
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/b7b24b28c8cd55844cab908f4f39dded638d5538
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/f130790f1acc8399f32652846c875a251efd040f
    Patch

Remediation

  • git.kernel.org https://git.kernel.org/stable/c/04bb66be92f48ed13c3faf1139d892df228789bc
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/4a7611ad653785fcdea5ff5f4441e2b7d05b7f11
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/7746e3bd4cc19b5092e00d32d676e329bfcb6900
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/7baa02b0ae9d17ec5f08836d8ea88ce1927d0678
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/895ebbedf88318607c24acc0f591c74b165e1d0a
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/a24765332e129c1916d5a6615418b75599b8fcdc
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/b7b24b28c8cd55844cab908f4f39dded638d5538
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/f130790f1acc8399f32652846c875a251efd040f
    Patch