Buffer overflow in Linux
CVE-2026-46300
In the Linux kernel, the following vulnerability has been resolved: net: skbuff: preserve shared-frag marker during coalescing skb_try_coalesce() can attach paged frags from @from to @to. If @from has SKBFL_SHARED_FRAG set, the resultin…
Vulnerability class: Buffer Overflow
EPSS: 0.003 (49.0th percentile) — read the EPSS interpretation.
CVSS v3 metric
CVSS v3 base score 7.8 (High). Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H.
Affected products
- Linux — versions cef401de7be8c4e155c6746bfccf721a4fa5fab9, 6.6.141, 6.1.174
- Linux Linux_kernel — versions 7.1
Weakness classification (CWE)
Public proof-of-concept exploits
References
- git.kernel.org/stable/c/fbeab9555564a1b98e8582cd106dfe46c4606991
- git.kernel.org/stable/c/179f1852bdedc300e373e807cc102cd81feff196
- git.kernel.org/stable/c/12401fcfb01f53ccc63ab0a3246570fe8f3105ee
- git.kernel.org/stable/c/989214c66884d70716d83dc1d0bf5e16287bf349
- git.kernel.org/stable/c/fc6eb39c55e97df2f94ad974b8a5bbcd019da2c8
- git.kernel.org/stable/c/ff375cc75f9167168db38e0464a482d5fbc8d81d
- git.kernel.org/stable/c/9bc9d6d6967a2239aa57af2aa53554eddd640d20
- 416baaa9-dc9f-4396-8d5f-8c081fb06d67 (Patch)
- 416baaa9-dc9f-4396-8d5f-8c081fb06d67 (Patch)
- 416baaa9-dc9f-4396-8d5f-8c081fb06d67 (Patch)
Frequently asked questions
- What is CVE-2026-46300?
- CVE-2026-46300 is a high-severity vulnerability in Linux, classified under Out-of-bounds Write. CVSS score: 7.8/10. Published 2026-05-23.
- How severe is CVE-2026-46300?
- High severity. CVSS v3 base score is 7.8 out of 10.
- Is CVE-2026-46300 known to be exploited?
- 10 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.