CVE-2026-46259
Description
In the Linux kernel, the following vulnerability has been resolved:
procfs: fix missing RCU protection when reading real_parent in do_task_stat()
When reading /proc/[pid]/stat, do_task_stat() accesses task->real_parent without proper RCU protection, which leads to:
cpu 0 cpu 1 ----- ----- do_task_stat var = task->real_parent release_task call_rcu(delayed_put_task_struct) task_tgid_nr_ns(var) rcu_read_lock <--- Too late to protect task->real_parent! task_pid_ptr <--- UAF! rcu_read_unlock
This patch uses task_ppid_nr_ns() instead of task_tgid_nr_ns() to add proper RCU protection for accessing task->real_parent.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
87- osv-coords85 versionspkg:linux/kernelpkg:rpm/almalinux/bpftoolpkg:rpm/almalinux/kernelpkg:rpm/almalinux/kernel-64kpkg:rpm/almalinux/kernel-64k-corepkg:rpm/almalinux/kernel-64k-debugpkg:rpm/almalinux/kernel-64k-debug-corepkg:rpm/almalinux/kernel-64k-debug-develpkg:rpm/almalinux/kernel-64k-debug-devel-matchedpkg:rpm/almalinux/kernel-64k-debug-modulespkg:rpm/almalinux/kernel-64k-debug-modules-corepkg:rpm/almalinux/kernel-64k-debug-modules-extrapkg:rpm/almalinux/kernel-64k-develpkg:rpm/almalinux/kernel-64k-devel-matchedpkg:rpm/almalinux/kernel-64k-modulespkg:rpm/almalinux/kernel-64k-modules-corepkg:rpm/almalinux/kernel-64k-modules-extrapkg:rpm/almalinux/kernel-abi-stablelistspkg:rpm/almalinux/kernel-corepkg:rpm/almalinux/kernel-cross-headerspkg:rpm/almalinux/kernel-debugpkg:rpm/almalinux/kernel-debug-corepkg:rpm/almalinux/kernel-debug-develpkg:rpm/almalinux/kernel-debug-devel-matchedpkg:rpm/almalinux/kernel-debug-modulespkg:rpm/almalinux/kernel-debug-modules-corepkg:rpm/almalinux/kernel-debug-modules-extrapkg:rpm/almalinux/kernel-debug-uki-virtpkg:rpm/almalinux/kernel-develpkg:rpm/almalinux/kernel-devel-matchedpkg:rpm/almalinux/kernel-docpkg:rpm/almalinux/kernel-headerspkg:rpm/almalinux/kernel-modulespkg:rpm/almalinux/kernel-modules-corepkg:rpm/almalinux/kernel-modules-extrapkg:rpm/almalinux/kernel-modules-extra-matchedpkg:rpm/almalinux/kernel-rtpkg:rpm/almalinux/kernel-rt-64kpkg:rpm/almalinux/kernel-rt-64k-corepkg:rpm/almalinux/kernel-rt-64k-debugpkg:rpm/almalinux/kernel-rt-64k-debug-corepkg:rpm/almalinux/kernel-rt-64k-debug-develpkg:rpm/almalinux/kernel-rt-64k-debug-modulespkg:rpm/almalinux/kernel-rt-64k-debug-modules-corepkg:rpm/almalinux/kernel-rt-64k-debug-modules-extrapkg:rpm/almalinux/kernel-rt-64k-develpkg:rpm/almalinux/kernel-rt-64k-modulespkg:rpm/almalinux/kernel-rt-64k-modules-corepkg:rpm/almalinux/kernel-rt-64k-modules-extrapkg:rpm/almalinux/kernel-rt-corepkg:rpm/almalinux/kernel-rt-debugpkg:rpm/almalinux/kernel-rt-debug-corepkg:rpm/almalinux/kernel-rt-debug-develpkg:rpm/almalinux/kernel-rt-debug-modulespkg:rpm/almalinux/kernel-rt-debug-modules-corepkg:rpm/almalinux/kernel-rt-debug-modules-extrapkg:rpm/almalinux/kernel-rt-develpkg:rpm/almalinux/kernel-rt-modulespkg:rpm/almalinux/kernel-rt-modules-corepkg:rpm/almalinux/kernel-rt-modules-extrapkg:rpm/almalinux/kernel-toolspkg:rpm/almalinux/kernel-tools-libspkg:rpm/almalinux/kernel-tools-libs-develpkg:rpm/almalinux/kernel-uki-virtpkg:rpm/almalinux/kernel-uki-virt-addonspkg:rpm/almalinux/kernel-zfcpdumppkg:rpm/almalinux/kernel-zfcpdump-corepkg:rpm/almalinux/kernel-zfcpdump-develpkg:rpm/almalinux/kernel-zfcpdump-devel-matchedpkg:rpm/almalinux/kernel-zfcpdump-modulespkg:rpm/almalinux/kernel-zfcpdump-modules-corepkg:rpm/almalinux/kernel-zfcpdump-modules-extrapkg:rpm/almalinux/libperfpkg:rpm/almalinux/perfpkg:rpm/almalinux/python3-perfpkg:rpm/almalinux/rtlapkg:rpm/almalinux/rvpkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Live%20Patching%2012%20SP5pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP5-LTSSpkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Server%20LTSS%20Extended%20Security%2012%20SP5pkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP5-LTSSpkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Enterprise%20Server%20LTSS%20Extended%20Security%2012%20SP5pkg:rpm/suse/kernel-syms&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP5-LTSSpkg:rpm/suse/kernel-syms&distro=SUSE%20Linux%20Enterprise%20Server%20LTSS%20Extended%20Security%2012%20SP5pkg:rpm/suse/kgraft-patch-SLE12-SP5_Update_84&distro=SUSE%20Linux%20Enterprise%20Live%20Patching%2012%20SP5
>= 2.6.26, < 5.10.252+ 84 more
- (no CPE)range: >= 2.6.26, < 5.10.252
- (no CPE)range: < 4.18.0-553.140.1.el8_10
- (no CPE)range: < 5.14.0-687.22.1.el9_8
- (no CPE)range: < 5.14.0-687.22.1.el9_8
- (no CPE)range: < 5.14.0-687.22.1.el9_8
- (no CPE)range: < 5.14.0-687.22.1.el9_8
- (no CPE)range: < 5.14.0-687.22.1.el9_8
- (no CPE)range: < 5.14.0-687.22.1.el9_8
- (no CPE)range: < 5.14.0-687.22.1.el9_8
- (no CPE)range: < 5.14.0-687.22.1.el9_8
- (no CPE)range: < 5.14.0-687.22.1.el9_8
- (no CPE)range: < 5.14.0-687.22.1.el9_8
- (no CPE)range: < 5.14.0-687.22.1.el9_8
- (no CPE)range: < 5.14.0-687.22.1.el9_8
- (no CPE)range: < 5.14.0-687.22.1.el9_8
- (no CPE)range: < 5.14.0-687.22.1.el9_8
- (no CPE)range: < 5.14.0-687.22.1.el9_8
- (no CPE)range: < 5.14.0-687.22.1.el9_8
- (no CPE)range: < 5.14.0-687.22.1.el9_8
- (no CPE)range: < 5.14.0-687.22.1.el9_8
- (no CPE)range: < 5.14.0-687.22.1.el9_8
- (no CPE)range: < 5.14.0-687.22.1.el9_8
- (no CPE)range: < 5.14.0-687.22.1.el9_8
- (no CPE)range: < 5.14.0-687.22.1.el9_8
- (no CPE)range: < 5.14.0-687.22.1.el9_8
- (no CPE)range: < 5.14.0-687.22.1.el9_8
- (no CPE)range: < 5.14.0-687.22.1.el9_8
- (no CPE)range: < 5.14.0-687.22.1.el9_8
- (no CPE)range: < 5.14.0-687.22.1.el9_8
- (no CPE)range: < 5.14.0-687.22.1.el9_8
- (no CPE)range: < 5.14.0-687.22.1.el9_8
- (no CPE)range: < 5.14.0-687.22.1.el9_8
- (no CPE)range: < 5.14.0-687.22.1.el9_8
- (no CPE)range: < 5.14.0-687.22.1.el9_8
- (no CPE)range: < 5.14.0-687.22.1.el9_8
- (no CPE)range: < 6.12.0-211.31.1.el10_2
- (no CPE)range: < 5.14.0-687.22.1.el9_8
- (no CPE)range: < 5.14.0-687.22.1.el9_8
- (no CPE)range: < 5.14.0-687.22.1.el9_8
- (no CPE)range: < 5.14.0-687.22.1.el9_8
- (no CPE)range: < 5.14.0-687.22.1.el9_8
- (no CPE)range: < 5.14.0-687.22.1.el9_8
- (no CPE)range: < 5.14.0-687.22.1.el9_8
- (no CPE)range: < 5.14.0-687.22.1.el9_8
- (no CPE)range: < 5.14.0-687.22.1.el9_8
- (no CPE)range: < 5.14.0-687.22.1.el9_8
- (no CPE)range: < 5.14.0-687.22.1.el9_8
- (no CPE)range: < 5.14.0-687.22.1.el9_8
- (no CPE)range: < 5.14.0-687.22.1.el9_8
- (no CPE)range: < 5.14.0-687.22.1.el9_8
- (no CPE)range: < 5.14.0-687.22.1.el9_8
- (no CPE)range: < 5.14.0-687.22.1.el9_8
- (no CPE)range: < 5.14.0-687.22.1.el9_8
- (no CPE)range: < 5.14.0-687.22.1.el9_8
- (no CPE)range: < 5.14.0-687.22.1.el9_8
- (no CPE)range: < 5.14.0-687.22.1.el9_8
- (no CPE)range: < 5.14.0-687.22.1.el9_8
- (no CPE)range: < 5.14.0-687.22.1.el9_8
- (no CPE)range: < 5.14.0-687.22.1.el9_8
- (no CPE)range: < 5.14.0-687.22.1.el9_8
- (no CPE)range: < 5.14.0-687.22.1.el9_8
- (no CPE)range: < 5.14.0-687.22.1.el9_8
- (no CPE)range: < 5.14.0-687.22.1.el9_8
- (no CPE)range: < 5.14.0-687.22.1.el9_8
- (no CPE)range: < 5.14.0-687.22.1.el9_8
- (no CPE)range: < 5.14.0-687.22.1.el9_8
- (no CPE)range: < 5.14.0-687.22.1.el9_8
- (no CPE)range: < 5.14.0-687.22.1.el9_8
- (no CPE)range: < 5.14.0-687.22.1.el9_8
- (no CPE)range: < 5.14.0-687.22.1.el9_8
- (no CPE)range: < 5.14.0-687.22.1.el9_8
- (no CPE)range: < 5.14.0-687.22.1.el9_8
- (no CPE)range: < 5.14.0-687.22.1.el9_8
- (no CPE)range: < 5.14.0-687.22.1.el9_8
- (no CPE)range: < 5.14.0-687.22.1.el9_8
- (no CPE)range: < 5.14.0-687.22.1.el9_8
- (no CPE)range: < 5.14.0-687.22.1.el9_8
- (no CPE)range: < 4.12.14-122.317.1
- (no CPE)range: < 4.12.14-122.317.1
- (no CPE)range: < 4.12.14-122.317.1
- (no CPE)range: < 4.12.14-122.317.1
- (no CPE)range: < 4.12.14-122.317.1
- (no CPE)range: < 4.12.14-122.317.1
- (no CPE)range: < 4.12.14-122.317.1
- (no CPE)range: < 1-8.7.1
Patches
Vulnerability mechanics
References
8- git.kernel.org/stable/c/0e64bd46a04a4fd61279aca9f53a664e9e5f7e7envdPatch
- git.kernel.org/stable/c/1c8dc5b5517546c68ffae40b948336122bb61306nvdPatch
- git.kernel.org/stable/c/4f9ae386861e280b7631ca252f798d25575627eenvdPatch
- git.kernel.org/stable/c/73ec7c96601d61d52310c659145bb06d933a0fa6nvdPatch
- git.kernel.org/stable/c/76149d53502cf17ef3ae454ff384551236fba867nvdPatch
- git.kernel.org/stable/c/c93a33f28f915d446eea6fb3f0e1def0b3af1982nvdPatch
- git.kernel.org/stable/c/dd8b13cb4ff1a4545a214ed897fdf2bc341155b6nvdPatch
- git.kernel.org/stable/c/fefa0fcd78be465b7ad4c497fa6ec90d64194c04nvdPatch
News mentions
1- Linux Kernel: 25 Vulnerabilities Disclosed in Single Batch on June 3, 2026Vypr Intelligence · Jun 3, 2026