CVE Catalog

CVE-2026-46137

CriticalCVSS 9.8
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.55%

42th percentile — higher than 42% of all known CVEs

Summary

A vulnerability in the Linux kernel related to mptcp has been resolved, concerning the mptcp_pm_add_timer() function executed as a timer callback in softirq context. To avoid data races, the socket lock needs to be held with bh_lock_sock().

Risk Assessment

Failure to properly lock the socket may lead to data races, resulting in unpredictable system behavior and potential crashes.

Recommendation

It is recommended to update the Linux kernel to the latest version to implement fixes related to this vulnerability and ensure proper socket locking in softirq context.

Original NVD description (English source)

In the Linux kernel, the following vulnerability has been resolved: mptcp: pm: ADD_ADDR rtx: fix potential data-race This mptcp_pm_add_timer() helper is executed as a timer callback in softirq context. To avoid any data races, the socket lock needs to be held with bh_lock_sock(). If the socket is in use, retry again soon after, similar to what is done with the keepalive timer.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS