Out-of-Bounds Vulnerability in Linux Kernel EROFS by Linux Foundation
CVE-2026-46078

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 27 May 2026

What is CVE-2026-46078?

A vulnerability exists in the Linux kernel's EROFS file system that involves improper handling of out-of-bounds name offsets for trailing directory entries. While there are existing boundary checks for name offsets, the issue arises when calculated name lengths allow for exploitation. If an attacker crafts a specific EROFS file with a trailing directory entry whose name offset equals or exceeds the maximum size, it can underflow, enabling unauthorized reading beyond the directory block. The condition demands verification of name offsets to ensure they align with the required struct size, thus safeguarding against potential memory corruption vulnerabilities.

Affected Version(s)

Linux 3aa8ec716e52c02360457fa018296629b4d0becf < 222055e6b4063abd2d9e13c3d49bbd1724c50789

Linux 3aa8ec716e52c02360457fa018296629b4d0becf < 48b27a955d22391c7f30169fa7b6b2e1977f1ce4

Linux 3aa8ec716e52c02360457fa018296629b4d0becf < 8ebb951a284b7446e025afc7dc5e9516ef9a7214

References

https://git.kernel.org/stable/c/222055e6b4063abd2d9e13c3d...

https://git.kernel.org/stable/c/48b27a955d22391c7f30169fa...

https://git.kernel.org/stable/c/8ebb951a284b7446e025afc7d...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 27, 2026
Vulnerability Reserved
May 13, 2026

CVE-2026-46078 Data

JSON