CVE-2026-46264— Linux kernel 安全漏洞
Possible ATT&CK Techniques 1AI
T1059 · Command and Scripting InterpreterAffected Version Matrix 6
新しい脆弱性情報の通知を購読するログインして購読
I. CVE-2026-46264の基本情報
脆弱性情報
脆弱性についてご質問がありますか?Shenlongの分析が参考になるかご確認ください!
Shenlongの10の質問を表示 ↗ 高度な大規模言語モデル技術を使用していますが、出力には不正確または古い情報が含まれる可能性があります。Shenlongはデータの正確性を確保するよう努めていますが、実際の状況に基づいて検証・判断してください。
脆弱性タイトル
drm/xe/pf: Fix sysfs initialization
ソース: NVD (National Vulnerability Database)
脆弱性説明
In the Linux kernel, the following vulnerability has been resolved: drm/xe/pf: Fix sysfs initialization In case of devm_add_action_or_reset() failure the provided cleanup action will be run immediately on the not yet initialized kobject. This may lead to errors like: [ ] kobject: '(null)' (ff110001393608e0): is not initialized, yet kobject_put() is being called. [ ] WARNING: lib/kobject.c:734 at kobject_put+0xd9/0x250, CPU#0: kworker/0:0/9 [ ] RIP: 0010:kobject_put+0xdf/0x250 [ ] Call Trace: [ ] xe_sriov_pf_sysfs_init+0x21/0x100 [xe] [ ] xe_sriov_pf_init_late+0x87/0x2b0 [xe] [ ] xe_sriov_init_late+0x5f/0x2c0 [xe] [ ] xe_device_probe+0x5f2/0xc20 [xe] [ ] xe_pci_probe+0x396/0x610 [xe] [ ] local_pci_probe+0x47/0xb0 [ ] refcount_t: underflow; use-after-free. [ ] WARNING: lib/refcount.c:28 at refcount_warn_saturate+0x68/0xb0, CPU#0: kworker/0:0/9 [ ] RIP: 0010:refcount_warn_saturate+0x68/0xb0 [ ] Call Trace: [ ] kobject_put+0x174/0x250 [ ] xe_sriov_pf_sysfs_init+0x21/0x100 [xe] [ ] xe_sriov_pf_init_late+0x87/0x2b0 [xe] [ ] xe_sriov_init_late+0x5f/0x2c0 [xe] [ ] xe_device_probe+0x5f2/0xc20 [xe] [ ] xe_pci_probe+0x396/0x610 [xe] [ ] local_pci_probe+0x47/0xb0 Fix that by calling kobject_init() and kobject_add() separately and register cleanup action after the kobject is initialized. Also make this cleanup registration a part of the create helper to fix another mistake, as in the loop we were wrongly passing parent kobject while registering cleanup action, and this resulted in some undetected leaks. (cherry picked from commit 98b16727f07e26a5d4de84d88805ce7ffcfdd324)
ソース: NVD (National Vulnerability Database)
CVSS情報
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
ソース: NVD (National Vulnerability Database)
脆弱性タイプ
N/A
ソース: NVD (National Vulnerability Database)
脆弱性タイトル
Linux kernel 安全漏洞
ソース: CNNVD (China National Vulnerability Database)
脆弱性説明
Linux kernel是美国Linux基金会的开源操作系统Linux所使用的内核。 Linux kernel存在安全漏洞,该漏洞源于devm_add_action_or_reset失败时清理操作在未初始化的kobject上运行,可能导致释放后重用。
ソース: CNNVD (China National Vulnerability Database)
CVSS情報
N/A
ソース: CNNVD (China National Vulnerability Database)
脆弱性タイプ
N/A
ソース: CNNVD (China National Vulnerability Database)
影響を受ける製品
II. CVE-2026-46264の公開POC
| # | POC説明 | ソースリンク | Shenlongリンク |
|---|
AI生成POCプレミアム
公開POCは見つかりませんでした。
ログインしてAI POCを生成III. CVE-2026-46264のインテリジェンス情報
请登录查看更多情报信息。
CVE-2026-46264 补丁与修复 (2)
Same Patch Batch · Linux · 2026-06-03 · 32 CVEs total
| CVE-2026-46244 | 9.1 CRITICAL | netfilter: nft_inner: Fix IPv6 inner_thoff desync |
| CVE-2026-46266 | 9.1 CRITICAL | inet: RAW sockets using IPPROTO_RAW MUST drop incoming ICMP |
| CVE-2026-46273 | 8.6 HIGH | ibmveth: Disable GSO for packets with small MSS |
| CVE-2026-46251 | 8.4 HIGH | btrfs: fix block_group_tree dirty_list corruption |
| CVE-2026-46270 | 8.4 HIGH | power: supply: rt9455: Fix use-after-free in power_supply_changed() |
| CVE-2026-46253 | 7.8 HIGH | pstore/ram: fix buffer overflow in persistent_ram_save_old() |
| CVE-2026-46259 | 7.8 HIGH | procfs: fix missing RCU protection when reading real_parent in do_task_stat() |
| CVE-2026-46260 | 7.8 HIGH | ipv6: Fix out-of-bound access in fib6_add_rt2node(). |
| CVE-2026-46263 | 7.8 HIGH | drm/amd/display: Fix out-of-bounds stream encoder index v3 |
| CVE-2026-46271 | 7.8 HIGH | wifi: ath12k: do WoW offloads only on primary link |
| CVE-2026-46265 | 7.5 HIGH | RDMA/hns: Fix WQ_MEM_RECLAIM warning |
| CVE-2026-46250 | 7.3 HIGH | MIPS: Work around LLVM bug when gp is used as global register variable |
| CVE-2026-46246 | power: supply: pm8916_lbc: Fix use-after-free for extcon in IRQ handler | |
| CVE-2026-46247 | clk: qcom: gfx3d: add parent to parent request map | |
| CVE-2026-46245 | drm/amd/display: Fix dc_link NULL handling in HPD init | |
| CVE-2025-71314 | drm/panthor: Recover from panthor_gpu_flush_caches() failures | |
| CVE-2026-46248 | wifi: ath12k: clear stale link mapping of ahvif->links_map | |
| CVE-2025-71313 | PCI: endpoint: Add missing NULL check for alloc_workqueue() | |
| CVE-2026-46249 | octeontx2-af: Fix PF driver crash with kexec kernel booting | |
| CVE-2026-46257 | clocksource/drivers/timer-sp804: Fix an Oops when read_current_timer is called on ARM32 pl |
Showing 20 of 32 CVEs. View all on vendor page →
IV. 関連脆弱性
同じ製品: Linux
- CVE-2026-53277
KVM: arm64: Take the SRCU lock for page table walks in fault - CVE-2026-53276
Bluetooth: ISO: Fix a use-after-free of the hci_conn pointer - CVE-2026-53275
ipv6: mcast: Fix use-after-free when processing MLD queries - CVE-2026-53274
net/smc: fix sleep-inside-lock in __smc_setsockopt() causing - CVE-2026-53273
tee: optee: prevent use-after-free when the client exits bef
同じベンダー: Linux
- CVE-2026-53277
KVM: arm64: Take the SRCU lock for page table walks in fault - CVE-2026-53276
Bluetooth: ISO: Fix a use-after-free of the hci_conn pointer - CVE-2026-53275
ipv6: mcast: Fix use-after-free when processing MLD queries - CVE-2026-53274
net/smc: fix sleep-inside-lock in __smc_setsockopt() causing - CVE-2026-53273
tee: optee: prevent use-after-free when the client exits bef
V. CVE-2026-46264へのコメント
まだコメントはありません