Vulnerability in Linux

CVE-2026-46046

In the Linux kernel, the following vulnerability has been resolved: ext4: fix missing brelse() in ext4_xattr_inode_dec_ref_all() The commit c8e008b60492 ("ext4: ignore xattrs past end") introduced a refcount leak in when block_csum is fa…

EPSS: 0.000 (9.7th percentile) — read the EPSS interpretation.

Affected products

  • Linux — versions 7.0.4, eb59cc31b6ea076021d14b04e7faab1636b87d0e, 6.1.135

References