目标达成 感谢每一位支持者 — 我们达成了 100% 目标!

目标: 1000 元 · 已筹: 1000

100.0%
请我们喝杯咖啡

CVE-2026-46333— Linux内核 ptrace get_dumpable()逻辑漏洞

AI 预测 5.5 利用难度: 理论可行

影响版本矩阵 14

厂商产品版本范围状态
LinuxLinux1da177e4c3f41524e886b7f1b8a0c1fc7321cac2< 93d4ba49d18e3d7fb41a9927c2d0cca5e9dfefd6affected
1da177e4c3f41524e886b7f1b8a0c1fc7321cac2< 15b828a46f305ae9f05a7c16914b3ce273474205affected
1da177e4c3f41524e886b7f1b8a0c1fc7321cac2< 4709234fd1b95136ceb789f639b1e7ea5de1b181affected
1da177e4c3f41524e886b7f1b8a0c1fc7321cac2< 8f907d345bae8f4b3f004c5abc56bf2dfb851ea7affected
1da177e4c3f41524e886b7f1b8a0c1fc7321cac2< 6e5b51e74a40d377bcd3081dd33fbaa0e1aa7e3daffected
1da177e4c3f41524e886b7f1b8a0c1fc7321cac2< 2a93a4fac7b6051d3be7cd1b015fe7320cd0404daffected
1da177e4c3f41524e886b7f1b8a0c1fc7321cac2< 01363cb3fbd0238ffdeb09f53e9039c9edf8a730affected
5.10.256≤ 5.10.*unaffected
… +6 条更多
获取后续新漏洞提醒登录后订阅

一、 漏洞 CVE-2026-46333 基础信息

漏洞信息
对漏洞内容有疑问?看看神龙的深度分析是否有帮助!
查看神龙十问 ↗

尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。

Vulnerability Title
ptrace: slightly saner 'get_dumpable()' logic
来源: 美国国家漏洞数据库 NVD
Vulnerability Description
In the Linux kernel, the following vulnerability has been resolved: ptrace: slightly saner 'get_dumpable()' logic The 'dumpability' of a task is fundamentally about the memory image of the task - the concept comes from whether it can core dump or not - and makes no sense when you don't have an associated mm. And almost all users do in fact use it only for the case where the task has a mm pointer. But we have one odd special case: ptrace_may_access() uses 'dumpable' to check various other things entirely independently of the MM (typically explicitly using flags like PTRACE_MODE_READ_FSCREDS). Including for threads that no longer have a VM (and maybe never did, like most kernel threads). It's not what this flag was designed for, but it is what it is. The ptrace code does check that the uid/gid matches, so you do have to be uid-0 to see kernel thread details, but this means that the traditional "drop capabilities" model doesn't make any difference for this all. Make it all make a *bit* more sense by saying that if you don't have a MM pointer, we'll use a cached "last dumpability" flag if the thread ever had a MM (it will be zero for kernel threads since it is never set), and require a proper CAP_SYS_PTRACE capability to override.
来源: 美国国家漏洞数据库 NVD
CVSS Information
N/A
来源: 美国国家漏洞数据库 NVD
Vulnerability Type
N/A
来源: 美国国家漏洞数据库 NVD

受影响产品

厂商产品影响版本CPE订阅
LinuxLinux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 ~ 93d4ba49d18e3d7fb41a9927c2d0cca5e9dfefd6 -
LinuxLinux 5.10.256 ~ 5.10.* -

二、漏洞 CVE-2026-46333 的公开POC

#POC 描述源链接神龙链接
AI 生成 POC高级

未找到公开 POC。

登录以生成 AI POC

三、漏洞 CVE-2026-46333 的情报信息

登录查看更多情报信息。

IV. Related Vulnerabilities

Same product: Linux
Same vendor: Linux

V. Comments for CVE-2026-46333

暂无评论

发表评论