Vulnerability-Lookup

FKIE_CVE-2026-46328

Vulnerability from fkie_nvd - Published: 2026-06-09 14:16 - Updated: 2026-06-09 14:16

Severity

Summary

In the Linux kernel, the following vulnerability has been resolved: apparmor: fix rlimit for posix cpu timers Posix cpu timers requires an additional step beyond setting the rlimit. Refactor the code so its clear when what code is setting the limit and conditionally update the posix cpu timers when appropriate.

References

	URL	Tags
	416baaa9-dc9f-4396-8d5f-8c081fb06d67	https://git.kernel.org/stable/c/1f736dfe27c857b78f8461cd7c3dd9640be74b37
	416baaa9-dc9f-4396-8d5f-8c081fb06d67	https://git.kernel.org/stable/c/2232d7cd243833ad750cae656d1817fe43744a09
	416baaa9-dc9f-4396-8d5f-8c081fb06d67	https://git.kernel.org/stable/c/28aa93fcfb33b6d580c5df4ae8b6d13fb0e6fcd3
	416baaa9-dc9f-4396-8d5f-8c081fb06d67	https://git.kernel.org/stable/c/57d51d41b90eface809b72e0e009b50546492f1f
	416baaa9-dc9f-4396-8d5f-8c081fb06d67	https://git.kernel.org/stable/c/6ca56813f4a589f536adceb42882855d91fb1125
	416baaa9-dc9f-4396-8d5f-8c081fb06d67	https://git.kernel.org/stable/c/9bf1fa150775b0c6b794e4b6a2c0395e13777999
	416baaa9-dc9f-4396-8d5f-8c081fb06d67	https://git.kernel.org/stable/c/e1cc11550b2f66687a374536c9dfdddcefca0efe
	416baaa9-dc9f-4396-8d5f-8c081fb06d67	https://git.kernel.org/stable/c/e43818b16815c0c2bf933ef28316f8e704e5e0ef

Impacted products

	Vendor	Product	Version

JSON

To clipboard

{
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "In the Linux kernel, the following vulnerability has been resolved:\n\napparmor: fix rlimit for posix cpu timers\n\nPosix cpu timers requires an additional step beyond setting the rlimit.\nRefactor the code so its clear when what code is setting the\nlimit and conditionally update the posix cpu timers when appropriate."
    }
  ],
  "id": "CVE-2026-46328",
  "lastModified": "2026-06-09T14:16:42.500",
  "metrics": {},
  "published": "2026-06-09T14:16:42.500",
  "references": [
    {
      "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
      "url": "https://git.kernel.org/stable/c/1f736dfe27c857b78f8461cd7c3dd9640be74b37"
    },
    {
      "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
      "url": "https://git.kernel.org/stable/c/2232d7cd243833ad750cae656d1817fe43744a09"
    },
    {
      "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
      "url": "https://git.kernel.org/stable/c/28aa93fcfb33b6d580c5df4ae8b6d13fb0e6fcd3"
    },
    {
      "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
      "url": "https://git.kernel.org/stable/c/57d51d41b90eface809b72e0e009b50546492f1f"
    },
    {
      "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
      "url": "https://git.kernel.org/stable/c/6ca56813f4a589f536adceb42882855d91fb1125"
    },
    {
      "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
      "url": "https://git.kernel.org/stable/c/9bf1fa150775b0c6b794e4b6a2c0395e13777999"
    },
    {
      "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
      "url": "https://git.kernel.org/stable/c/e1cc11550b2f66687a374536c9dfdddcefca0efe"
    },
    {
      "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
      "url": "https://git.kernel.org/stable/c/e43818b16815c0c2bf933ef28316f8e704e5e0ef"
    }
  ],
  "sourceIdentifier": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
  "vulnStatus": "Received"
}

CVE-2026-46328 (GCVE-0-2026-46328)

Vulnerability from cvelistv5 – Published: 2026-06-09 12:25 – Updated: 2026-06-09 12:25

Title

apparmor: fix rlimit for posix cpu timers

Summary

Severity

No CVSS data available.

Assigner

Linux

References

8 references

URL	Tags
https://git.kernel.org/stable/c/e1cc11550b2f66687…
https://git.kernel.org/stable/c/2232d7cd243833ad7…
https://git.kernel.org/stable/c/28aa93fcfb33b6d58…
https://git.kernel.org/stable/c/1f736dfe27c857b78…
https://git.kernel.org/stable/c/e43818b16815c0c2b…
https://git.kernel.org/stable/c/9bf1fa150775b0c6b…
https://git.kernel.org/stable/c/57d51d41b90eface8…
https://git.kernel.org/stable/c/6ca56813f4a589f53…

Impacted products

2 products

Vendor	Product	Version
Linux	Linux	Affected: baa73d9e478ff32d62f3f9422822b59dd9a95a21 , < e1cc11550b2f66687a374536c9dfdddcefca0efe (git) Affected: baa73d9e478ff32d62f3f9422822b59dd9a95a21 , < 2232d7cd243833ad750cae656d1817fe43744a09 (git) Affected: baa73d9e478ff32d62f3f9422822b59dd9a95a21 , < 28aa93fcfb33b6d580c5df4ae8b6d13fb0e6fcd3 (git) Affected: baa73d9e478ff32d62f3f9422822b59dd9a95a21 , < 1f736dfe27c857b78f8461cd7c3dd9640be74b37 (git) Affected: baa73d9e478ff32d62f3f9422822b59dd9a95a21 , < e43818b16815c0c2bf933ef28316f8e704e5e0ef (git) Affected: baa73d9e478ff32d62f3f9422822b59dd9a95a21 , < 9bf1fa150775b0c6b794e4b6a2c0395e13777999 (git) Affected: baa73d9e478ff32d62f3f9422822b59dd9a95a21 , < 57d51d41b90eface809b72e0e009b50546492f1f (git) Affected: baa73d9e478ff32d62f3f9422822b59dd9a95a21 , < 6ca56813f4a589f536adceb42882855d91fb1125 (git)
Linux	Linux	Affected: 4.10 Unaffected: 0 , < 4.10 (semver) Unaffected: 5.10.252 , ≤ 5.10.* (semver) Unaffected: 5.15.202 , ≤ 5.15.* (semver) Unaffected: 6.1.165 , ≤ 6.1.* (semver) Unaffected: 6.6.128 , ≤ 6.6.* (semver) Unaffected: 6.12.75 , ≤ 6.12.* (semver) Unaffected: 6.18.14 , ≤ 6.18.* (semver) Unaffected: 6.19.4 , ≤ 6.19.* (semver) Unaffected: 7.0 , ≤ * (original_commit_for_fix)

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "security/apparmor/resource.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "e1cc11550b2f66687a374536c9dfdddcefca0efe",
              "status": "affected",
              "version": "baa73d9e478ff32d62f3f9422822b59dd9a95a21",
              "versionType": "git"
            },
            {
              "lessThan": "2232d7cd243833ad750cae656d1817fe43744a09",
              "status": "affected",
              "version": "baa73d9e478ff32d62f3f9422822b59dd9a95a21",
              "versionType": "git"
            },
            {
              "lessThan": "28aa93fcfb33b6d580c5df4ae8b6d13fb0e6fcd3",
              "status": "affected",
              "version": "baa73d9e478ff32d62f3f9422822b59dd9a95a21",
              "versionType": "git"
            },
            {
              "lessThan": "1f736dfe27c857b78f8461cd7c3dd9640be74b37",
              "status": "affected",
              "version": "baa73d9e478ff32d62f3f9422822b59dd9a95a21",
              "versionType": "git"
            },
            {
              "lessThan": "e43818b16815c0c2bf933ef28316f8e704e5e0ef",
              "status": "affected",
              "version": "baa73d9e478ff32d62f3f9422822b59dd9a95a21",
              "versionType": "git"
            },
            {
              "lessThan": "9bf1fa150775b0c6b794e4b6a2c0395e13777999",
              "status": "affected",
              "version": "baa73d9e478ff32d62f3f9422822b59dd9a95a21",
              "versionType": "git"
            },
            {
              "lessThan": "57d51d41b90eface809b72e0e009b50546492f1f",
              "status": "affected",
              "version": "baa73d9e478ff32d62f3f9422822b59dd9a95a21",
              "versionType": "git"
            },
            {
              "lessThan": "6ca56813f4a589f536adceb42882855d91fb1125",
              "status": "affected",
              "version": "baa73d9e478ff32d62f3f9422822b59dd9a95a21",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "security/apparmor/resource.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "4.10"
            },
            {
              "lessThan": "4.10",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.10.*",
              "status": "unaffected",
              "version": "5.10.252",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.202",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.1.*",
              "status": "unaffected",
              "version": "6.1.165",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.6.*",
              "status": "unaffected",
              "version": "6.6.128",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.12.*",
              "status": "unaffected",
              "version": "6.12.75",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.18.*",
              "status": "unaffected",
              "version": "6.18.14",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.19.*",
              "status": "unaffected",
              "version": "6.19.4",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "7.0",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.10.252",
                  "versionStartIncluding": "4.10",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.202",
                  "versionStartIncluding": "4.10",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.1.165",
                  "versionStartIncluding": "4.10",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.6.128",
                  "versionStartIncluding": "4.10",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.12.75",
                  "versionStartIncluding": "4.10",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.18.14",
                  "versionStartIncluding": "4.10",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.19.4",
                  "versionStartIncluding": "4.10",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "7.0",
                  "versionStartIncluding": "4.10",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\napparmor: fix rlimit for posix cpu timers\n\nPosix cpu timers requires an additional step beyond setting the rlimit.\nRefactor the code so its clear when what code is setting the\nlimit and conditionally update the posix cpu timers when appropriate."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2026-06-09T12:25:57.629Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/e1cc11550b2f66687a374536c9dfdddcefca0efe"
        },
        {
          "url": "https://git.kernel.org/stable/c/2232d7cd243833ad750cae656d1817fe43744a09"
        },
        {
          "url": "https://git.kernel.org/stable/c/28aa93fcfb33b6d580c5df4ae8b6d13fb0e6fcd3"
        },
        {
          "url": "https://git.kernel.org/stable/c/1f736dfe27c857b78f8461cd7c3dd9640be74b37"
        },
        {
          "url": "https://git.kernel.org/stable/c/e43818b16815c0c2bf933ef28316f8e704e5e0ef"
        },
        {
          "url": "https://git.kernel.org/stable/c/9bf1fa150775b0c6b794e4b6a2c0395e13777999"
        },
        {
          "url": "https://git.kernel.org/stable/c/57d51d41b90eface809b72e0e009b50546492f1f"
        },
        {
          "url": "https://git.kernel.org/stable/c/6ca56813f4a589f536adceb42882855d91fb1125"
        }
      ],
      "title": "apparmor: fix rlimit for posix cpu timers",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2026-46328",
    "datePublished": "2026-06-09T12:25:57.629Z",
    "dateReserved": "2026-05-13T15:03:33.112Z",
    "dateUpdated": "2026-06-09T12:25:57.629Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2"
}

Sightings

Author	Source	Type	Date	Other

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

FKIE_CVE-2026-46328

CVE-2026-46328 (GCVE-0-2026-46328)

Tags

Sightings

Nomenclature