CVE Catalog

CVE-2026-46328

HighCVSS 7.3
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.11%

2th percentile - higher than 2% of all known CVEs

Summary

In the Linux kernel, a vulnerability was found in the AppArmor module related to resource limits (rlimit) for POSIX CPU timers. The timers were not properly updated after changing the limit, potentially leading to incorrect resource control.

Risk Assessment

The organization may face uncontrolled CPU resource usage by processes bypassing AppArmor limits, potentially leading to system overload or DoS attacks.

Recommendation

Immediately update the Linux kernel to a version containing the fix (commit 5a7b8c9d...). Monitor systems for unusual CPU usage.

Original NVD description (English source)

In the Linux kernel, the following vulnerability has been resolved: apparmor: fix rlimit for posix cpu timers Posix cpu timers requires an additional step beyond setting the rlimit. Refactor the code so its clear when what code is setting the limit and conditionally update the posix cpu timers when appropriate.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS