CVE-2026-46005
Published: May 28, 2026Last modified: June 24, 2026
Description
In the Linux kernel, the following vulnerability has been resolved: xfs: fix a resource leak in xfs_alloc_buftarg() In the error path, call fs_put_dax() to drop the DAX device reference.
Severity score breakdown
| Parameter | Value |
|---|---|
| Base score | 5.5 |
| Attack Vector | LOCAL |
| Attack complexity | LOW |
| Privileges required | LOW |
| User interaction | NONE |
| Scope | UNCHANGED |
| Confidentiality | NONE |
| Integrity impact | NONE |
| Availability impact | HIGH |
| Vector | CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H |
Status
| Product | Release | Package | Status |
|---|---|---|---|
| Alpaquita Linux | 23 LTS | linux-lts | Vulnerable (6.1.170-r0) |
| 25 LTS | linux-lts | Fixed (6.12.87-r0) | |
| Stream | linux-lts | Fixed (6.18.35-r1) |
References
- https://git.kernel.org/stable/c/28a6c132b8c6e5eeefa889c4fb43d65b12989d48
- https://git.kernel.org/stable/c/29a7b2614357393b176ef06ba5bc3ff5afc8df69
- https://git.kernel.org/stable/c/5804cb507233ed767a83ac70527b2f6c4566ec75
- https://git.kernel.org/stable/c/5c293a1e1ef0f838772d20ae8afae4cbd87cd3f9
- https://git.kernel.org/stable/c/82fb9da6477d08bdab954dc7bc081a41f2f9cae6
- https://git.kernel.org/stable/c/ed2d6442e61169e565727ba15c4f6a0cb5ce16df