Page Cache Corruption Vulnerability in Linux Kernel - Vendor: Linux
CVE-2026-46331
Key Information:
Badges
What is CVE-2026-46331?
CVE-2026-46331 is a vulnerability identified in the Linux kernel, a critical component that serves as the core interface between a computer's hardware and its processes. The Linux kernel is used widely across various systems, from servers to personal devices, making it integral to many organizations' operations. This specific vulnerability pertains to the handling of page cache, which is responsible for optimizing the efficiency of data access in memory. When exploited, CVE-2026-46331 can lead to page cache corruption, potentially compromising system stability and data integrity. The flaw arises from an issue with the key processing loop within the kernel's networking code, which fails to accurately account for certain runtime header offsets, leaving parts of the writable region unprotected. If an attacker successfully exploits this vulnerability, they could disrupt the normal functioning of the kernel, resulting in significant operational challenges for affected organizations.
Potential impact of CVE-2026-46331
-
System Instability: Exploitation of this vulnerability can lead to unpredictable behavior within the operating system, including crashes and performance degradation, impacting critical services and tasks.
-
Data Integrity Issues: The corruption of page cache may result in loss or alteration of data stored in memory, which could affect applications relying on accurate data retrieval, leading to erroneous operations and potential data breaches.
-
Increased Attack Surface: The existence of this vulnerability could allow threat actors to craft more sophisticated attacks, potentially facilitating further exploitation of the system and the introduction of additional malicious activities.
Affected Version(s)
Linux abe35bf3be51482593076d516a680d79e5fbc8e1 < 544d857b42a1734b923040e13aa61a6fd4746cf2
Linux b773640d5bb9e2acfd91e2695717af04d47aa116
Linux 8b796475fd7882663a870456466a4fb315cc1bd6
Exploit Proof of Concept (PoC)
PoC code is written by security researchers to demonstrate the vulnerability can be exploited. PoC code is also a key component for weaponization which could lead to ransomware.
News Articles
New Linux pedit COW Exploit Enables Root Access by Poisoning Cached Binaries
Swati KhandelwalJun 26, 2026Linux / Vulnerability
2 weeks ago
New Linux pedit COW Exploit Enables Root Access by Poisoning Cached Binaries
CVE-2026-46331 lets local users gain root on affected Linux systems by corrupting page-cache memory through act_pedit.
2 weeks ago
References
CVSS V3.1
Timeline
- 🥇
Vulnerability reached the number 1 worldwide trending spot
- 📈
Vulnerability started trending
- 📰
First article discovered by The Hacker News
- 🟡
Public PoC available
- 👾
Exploit known to exist
Vulnerability published
Vulnerability Reserved