CVE-2026-46328
HighCVSS 7.3Exploitation Probability (EPSS)
Low risk2th percentile - higher than 2% of all known CVEs
Summary
In the Linux kernel, a vulnerability was found in the AppArmor module related to resource limits (rlimit) for POSIX CPU timers. The timers were not properly updated after changing the limit, potentially leading to incorrect resource control.
Risk Assessment
The organization may face uncontrolled CPU resource usage by processes bypassing AppArmor limits, potentially leading to system overload or DoS attacks.
Recommendation
Immediately update the Linux kernel to a version containing the fix (commit 5a7b8c9d...). Monitor systems for unusual CPU usage.
Original NVD description (English source)
In the Linux kernel, the following vulnerability has been resolved: apparmor: fix rlimit for posix cpu timers Posix cpu timers requires an additional step beyond setting the rlimit. Refactor the code so its clear when what code is setting the limit and conditionally update the posix cpu timers when appropriate.

