CVE-2026-46329

MEDIUM

erofs: handle end of filesystem properly for file-backed mounts

Title source: cna
STIX 2.1

Description

In the Linux kernel, the following vulnerability has been resolved: erofs: handle end of filesystem properly for file-backed mounts I/O requests beyond the end of the filesystem should be zeroed out, similar to loopback devices and that is what we expect.

Scores

CVSS v3 5.5
EPSS 0.0011
EPSS Percentile 1.7%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Details

Status published
Products (14)
linux/Kernel 6.12.0 - 6.12.75linux
linux/Kernel 6.13.0 - 6.18.14linux
linux/Kernel 6.19.0 - 6.19.4linux
Linux/Linux < 6.12
Linux/Linux 6.12
Linux/Linux 6.12.75 - 6.12.*
Linux/Linux 6.18.14 - 6.18.*
Linux/Linux 6.19.4 - 6.19.*
Linux/Linux 7.0
Linux/Linux ce63cb62d794c98c7631c2296fa845f2a8d0a4a1 - 8d582d65d20bb4796db01b19e86909ad68cb337b
... and 4 more
Published Jun 09, 2026
Tracked Since Jun 09, 2026