Race Condition Vulnerability in Linux Kernel's Coresight Product by Linux Foundation
CVE-2026-46272

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 3 June 2026

What is CVE-2026-46272?

A race condition vulnerability has been identified in the Coresight module of the Linux kernel, which occurs when both perf mode and sysfs mode are enabled simultaneously. This can lead to inconsistent behavior due to a mishandling of resource allocation within critical sections. Specifically, the shared spinlock mechanism fails to adequately manage the interactions between these modes, ultimately triggering a warning when the system attempts to enable hardware in sysfs mode while perf mode is active. A fix has been implemented to ensure that sysfs mode checks whether perf mode is currently running before proceeding with hardware allocation, thus preventing resource contention and ensuring system stability.

Affected Version(s)

Linux 296b01fd106e787d4463974a7f42d286a5df08cd < 38a07194bbcddb18d77dad40ba9978d994c0b74c

Linux 296b01fd106e787d4463974a7f42d286a5df08cd < 6906aa70d4fc5900b954136e20e27c2be6d1acab

Linux 296b01fd106e787d4463974a7f42d286a5df08cd

References

https://git.kernel.org/stable/c/38a07194bbcddb18d77dad40b...

https://git.kernel.org/stable/c/6906aa70d4fc5900b954136e2...

https://git.kernel.org/stable/c/e6e43e82c79c97917cbe356c0...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 3, 2026
Vulnerability Reserved
May 13, 2026

CVE-2026-46272 Data

JSON