CVE-2026-46302

NONE EPSS 4.1%
Published Jun 8, 20263w ago · Modified Jun 17, 20262w ago
Find Similar
Published Jun 8, 2026 3w ago
Last Modified Jun 17, 2026 2w ago

Description

In the Linux kernel, the following vulnerability has been resolved: selinux: allow multiple opens of /sys/fs/selinux/policy Currently there can only be a single open of /sys/fs/selinux/policy at any time. This allows any process to block any other process from reading the kernel policy. The original motivation seems to have been a mix of preventing an inconsistent view of the policy size and preventing userspace from allocating kernel memory without bound, but this is arguably equally bad. Eliminate the policy_opened flag and shrink the critical section that the policy mutex is held. While we are making changes here, drop a couple of extraneous BUG_ONs.

Threat Intelligence

EPSS Exploit Probability
4.1% percentile
Exploit & Patch Status
No Known Exploit
No Patch Available

References 2

  • git.kernel.org https://git.kernel.org/stable/c/714362f3779dfa453a78ced32396a72726962a41
  • git.kernel.org https://git.kernel.org/stable/c/a02cd6805562305f936e807da83e253b719dd965

Remediation

No remediation data recorded yet

Check vendor advisories and the NVD entry for patch availability.