IOCTL Handling Vulnerability in Linux Kernel Media Staging by Linux
CVE-2026-46205

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 28 May 2026

What is CVE-2026-46205?

A vulnerability in the Linux kernel's media staging component disallows all private IOCTLs, which may not be as safe as previously assumed. This decision was made to enhance security measures, ensuring that when any private IOCTL command is issued, the function will return early if the command is non-zero. This protects against potential misuse while maintaining compatibility with static code checkers.

Affected Version(s)

Linux a49d25364dfb9f8a64037488a39ab1f56c5fa419 < 8c7a281a99224a5b9af99c4dcd98d68eea75926c

Linux a49d25364dfb9f8a64037488a39ab1f56c5fa419 < 6f1ce75a75c65061e7a720c3d0ee5f8adab7a2d3

Linux a49d25364dfb9f8a64037488a39ab1f56c5fa419

References

https://git.kernel.org/stable/c/8c7a281a99224a5b9af99c4dc...

https://git.kernel.org/stable/c/6f1ce75a75c65061e7a720c3d...

https://git.kernel.org/stable/c/c7848b67ef10f581114b6a2f5...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 28, 2026
Vulnerability Reserved
May 13, 2026

CVE-2026-46205 Data

JSON