Out-of-bounds write in Linux kernel - CVE-2026-46281
Published: June 10, 2026
Vulnerability identifier: #VU134251
CSH Severity: Low
CVSS v4.0: CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear
CVE-ID: CVE-2026-46281
CWE-ID: CWE-787
Exploitation vector: Local access
Exploit availability:
No public exploit available
Vendor: Linux Foundation
Affected software:
Linux kernel
Linux kernel
Detailed vulnerability description
The vulnerability allows a local user to cause a denial of service.
The vulnerability exists due to out-of-bounds write in vrealloc_node_align_noprof() when reallocating and shrinking an existing vmalloc allocation that requires a new allocation. A local user can trigger the vulnerable reallocation path to cause a denial of service.
The issue occurs when the existing pointer is on the wrong NUMA node or does not satisfy an alignment constraint, causing data from the old allocation to be copied into a smaller new buffer.
How to mitigate CVE-2026-46281
Install security update from vendor's repository.