Linux Kernel Function Issue Leads to Resource Imbalance
CVE-2026-46196

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 28 May 2026

What is CVE-2026-46196?

A vulnerability in the Linux kernel arises from an improper management of tracepoint registration, specifically during the transition from state 0 to 1. When the tracepoint_add_func() triggers the registration function ext->regfunc() but encounters a failure in func_add(), it fails to call the necessary unregistration function ext->unregfunc(). This error in resource cleanup leaves the system in an imbalanced state where the reference count for syscall tracepoints remains erroneously high, resulting in unnecessary overhead on every task until the next reboot. To resolve this, the code should be modified to ensure symmetric cleanup on errors, mirroring the existing cleanup process for successful registrations.

Affected Version(s)

Linux 8cf868affdc459beee1a941df0cfaba1673740e3 < 247ed8a969f981bfba3112fd4bb441eaa6cef59c

Linux 8cf868affdc459beee1a941df0cfaba1673740e3 < 7bcadb3c2bc1cf60690e931aadd35fb7bd646a49

Linux 8cf868affdc459beee1a941df0cfaba1673740e3 < 2c5b8eeea006eb694c81631cd5713d494b80be90

References

https://git.kernel.org/stable/c/247ed8a969f981bfba3112fd4...

https://git.kernel.org/stable/c/7bcadb3c2bc1cf60690e931aa...

https://git.kernel.org/stable/c/2c5b8eeea006eb694c81631cd...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 28, 2026
Vulnerability Reserved
May 13, 2026

CVE-2026-46196 Data

JSON