Main Vulnerability Database Vulnerabilities #VU132452

Improper resource shutdown or release in Linux kernel - CVE-2026-46044

Published: May 28, 2026

Vulnerability identifier: #VU132452

CSH Severity: Low

CVSS v4.0: CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear

CVE-ID: CVE-2026-46044

CWE-ID: CWE-404

Exploitation vector: Local access

Exploit availability: No public exploit available

Vendor: Linux Foundation

Affected software:
Linux kernel

Detailed vulnerability description

The vulnerability allows a local user to cause a denial of service.

The vulnerability exists due to improper resource shutdown in the ssif kthread cleanup logic when handling error conditions after creating the ssif kthread but before starting the ssif interface. A local user can trigger an error condition during ssif interface initialization to cause a denial of service.

How to mitigate CVE-2026-46044

Install security update from vendor's repository.

Sources

https://git.kernel.org/stable/c/75c486cb1bcaa1a3ec3a6438498176a3a4998ae4
https://git.kernel.org/stable/c/800febc637d1c1974b1e899dea8a07e115d60766
https://git.kernel.org/stable/c/858bc8b9edb6eaf0522900128bb9053e2df6b0f6

Improper resource shutdown or release in Linux kernel - CVE-2026-46044

Detailed vulnerability description

How to mitigate CVE-2026-46044

Sources

Please verify you're human