Description
In the Linux kernel, the following vulnerability has been resolved: audit: add fchmodat2() to change attributes class fchmodat2(), introduced in version 6.6 is currently not in the change attribute class of audit. Calling fchmodat2() to change a file attribute in the same fashion than chmod() or fchmodat() will bypass audit rules such as: -w /tmp/test -p rwa -k test_rwa The current patch adds fchmodat2() to the change attributes class.
References (9)
Core 9
Core References
Scores
CVSS v3
5.5
EPSS
0.0002
EPSS Percentile
4.8%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Details
Status
published
Products (29)
linux/Kernel
6.13.0 - 6.18.16linux
linux/Kernel
6.19.0 - 6.19.6linux
linux/Kernel
6.6.0 - 6.6.128linux
linux/Kernel
6.7.0 - 6.12.75linux
Linux/Linux
< 6.6
Linux/Linux
09da082b07bbae1c11d9560c8502800039aebcea - 3e762a03713e8c25ca0108c075d662c897fc0623
Linux/Linux
09da082b07bbae1c11d9560c8502800039aebcea - 4f493a6079b588cf1f04ce5ed6cdad45ab0d53dc
Linux/Linux
09da082b07bbae1c11d9560c8502800039aebcea - 4fed776ca86378da7dd743a7b648e20b025ba8ef
Linux/Linux
09da082b07bbae1c11d9560c8502800039aebcea - 91e27bc79c3bca93c06bf5a471d47df9a35b3741
Linux/Linux
09da082b07bbae1c11d9560c8502800039aebcea - c4334c0d0e7d6f02ed93756fd4ba807e3d00c05f
... and 19 more
Published
Mar 17, 2026
Tracked Since
Mar 17, 2026