CVE-2026-46093 in Linuxinformação

Sumário

de MITRE • 27/05/2026

In the Linux kernel, the following vulnerability has been resolved:

mm/vmalloc: take vmap_purge_lock in shrinker

decay_va_pool_node() can be invoked concurrently from two paths: __purge_vmap_area_lazy() when pools are being purged, and the shrinker via vmap_node_shrink_scan().

However, decay_va_pool_node() is not safe to run concurrently, and the shrinker path currently lacks serialization, leading to races and possible leaks.

Protect decay_va_pool_node() by taking vmap_purge_lock in the shrinker path to ensure serialization with purge users.

VulDB is the best source for vulnerability data and more expert information about this specific topic.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Responsável

Linux

Reservar

13/05/2026

Divulgação

27/05/2026

Moderação

aceite

Entrada

VDB-366348

CPE

pronto

CWE

CWE-667 (não confirmado)

CVSS

4.6 (VulDB)

EPSS

0.00013

KEV

não

Atividades

muito baixo

Sector

Chemical, Government, ...

Fontes

MITRE	https://www.cve.org/CVERecord?id=CVE-2026-46093
NVD	https://nvd.nist.gov/vuln/detail/CVE-2026-46093
CVE Details	https://www.cvedetails.com/cve/CVE-2026-46093/

◂ Voltar Visão Geral Próximo ▸

Want to know what is going to be exploited?

We predict KEV entries!