CVE-2026-46331 | defend.network

What is CVE-2026-46331?

In the Linux kernel, the following vulnerability has been resolved: net/sched: fix pedit partial COW leading to page cache corruption tcf_pedit_act() computes the COW range for skb_ensure_writable() once before the key loop using tcfp_off_max_hint, but the hint does not account for the runtime header offset added by typed keys. This can leave part of the write region un-COW'd. Fix by moving skb_ensure_writable() inside the per-key loop where the actual write offset is known, and add overflow checking on the offset arithmetic. For negative offsets (e.g. Ethernet header edits at ingress), use skb_cow() to COW the headroom instead. Guard offset_valid() against INT_MIN, where negation is undefined.

CVSSawaiting NVD

ExploitationNo exploitation reported

EPSS<1% · P21

Triage statusUnder Review

ActionSchedule for next cycle

NVD published2026-06-16

NVD last modified2026-06-19

Affected product

Linux kernel (traffic-control subsystem, act_pedit)

Remediation Steps

Apply kernel security patch from your Linux distribution vendor as soon as available
Prioritize systems running untrusted or shared workloads where local users have shell access
Monitor for privilege escalation attempts targeting the traffic-control subsystem
Review system logs for unauthorized root-level process execution

References

Coverage on defend.network

Vulnerability Priority Report – Week 4 of June 2026 (June 22 – 28)
Signal backup keys targeted; Linux kernel RCE; AWS Q credential theft (2026-06-27)

🤖 This CVE page is generated by defend.network from NVD, CISA KEV, EPSS, and our verified daily briefings. Severity and exploitation data come from official sources; always verify remediation steps against the official vendor advisory before acting in production.

What is CVE-2026-46331?

Affected product

Remediation Steps

References

Coverage on defend.network

Get Critical CVE Alerts