CVE-2026-46333
Description
In the Linux kernel, the following vulnerability has been resolved:
ptrace: slightly saner 'get_dumpable()' logic
The 'dumpability' of a task is fundamentally about the memory image of the task - the concept comes from whether it can core dump or not - and makes no sense when you don't have an associated mm.
And almost all users do in fact use it only for the case where the task has a mm pointer.
But we have one odd special case: ptrace_may_access() uses 'dumpable' to check various other things entirely independently of the MM (typically explicitly using flags like PTRACE_MODE_READ_FSCREDS). Including for threads that no longer have a VM (and maybe never did, like most kernel threads).
It's not what this flag was designed for, but it is what it is.
The ptrace code does check that the uid/gid matches, so you do have to be uid-0 to see kernel thread details, but this means that the traditional "drop capabilities" model doesn't make any difference for this all.
Make it all make a *bit* more sense by saying that if you don't have a MM pointer, we'll use a cached "last dumpability" flag if the thread ever had a MM (it will be zero for kernel threads since it is never set), and require a proper CAP_SYS_PTRACE capability to override.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
150- osv-coords148 versionspkg:rpm/almalinux/bpftoolpkg:rpm/almalinux/kernelpkg:rpm/almalinux/kernel-64kpkg:rpm/almalinux/kernel-64k-corepkg:rpm/almalinux/kernel-64k-debugpkg:rpm/almalinux/kernel-64k-debug-corepkg:rpm/almalinux/kernel-64k-debug-develpkg:rpm/almalinux/kernel-64k-debug-devel-matchedpkg:rpm/almalinux/kernel-64k-debug-modulespkg:rpm/almalinux/kernel-64k-debug-modules-corepkg:rpm/almalinux/kernel-64k-debug-modules-extrapkg:rpm/almalinux/kernel-64k-debug-modules-internalpkg:rpm/almalinux/kernel-64k-debug-modules-partnerpkg:rpm/almalinux/kernel-64k-debug-uki-virtpkg:rpm/almalinux/kernel-64k-debug-uki-virt-addonspkg:rpm/almalinux/kernel-64k-develpkg:rpm/almalinux/kernel-64k-devel-matchedpkg:rpm/almalinux/kernel-64k-modulespkg:rpm/almalinux/kernel-64k-modules-corepkg:rpm/almalinux/kernel-64k-modules-extrapkg:rpm/almalinux/kernel-64k-modules-internalpkg:rpm/almalinux/kernel-64k-modules-partnerpkg:rpm/almalinux/kernel-64k-uki-virtpkg:rpm/almalinux/kernel-64k-uki-virt-addonspkg:rpm/almalinux/kernel-abi-stablelistspkg:rpm/almalinux/kernel-corepkg:rpm/almalinux/kernel-cross-headerspkg:rpm/almalinux/kernel-debugpkg:rpm/almalinux/kernel-debug-corepkg:rpm/almalinux/kernel-debug-develpkg:rpm/almalinux/kernel-debug-devel-matchedpkg:rpm/almalinux/kernel-debug-modulespkg:rpm/almalinux/kernel-debug-modules-corepkg:rpm/almalinux/kernel-debug-modules-extrapkg:rpm/almalinux/kernel-debug-modules-internalpkg:rpm/almalinux/kernel-debug-modules-partnerpkg:rpm/almalinux/kernel-debug-uki-virtpkg:rpm/almalinux/kernel-debug-uki-virt-addonspkg:rpm/almalinux/kernel-develpkg:rpm/almalinux/kernel-devel-matchedpkg:rpm/almalinux/kernel-docpkg:rpm/almalinux/kernel-headerspkg:rpm/almalinux/kernel-ipaclones-internalpkg:rpm/almalinux/kernel-kvmpkg:rpm/almalinux/kernel-kvm-corepkg:rpm/almalinux/kernel-kvm-debugpkg:rpm/almalinux/kernel-kvm-debug-corepkg:rpm/almalinux/kernel-kvm-debug-develpkg:rpm/almalinux/kernel-kvm-debug-devel-matchedpkg:rpm/almalinux/kernel-kvm-debug-modulespkg:rpm/almalinux/kernel-kvm-debug-modules-corepkg:rpm/almalinux/kernel-kvm-debug-modules-extrapkg:rpm/almalinux/kernel-kvm-debug-modules-internalpkg:rpm/almalinux/kernel-kvm-debug-modules-partnerpkg:rpm/almalinux/kernel-kvm-develpkg:rpm/almalinux/kernel-kvm-devel-matchedpkg:rpm/almalinux/kernel-kvm-modulespkg:rpm/almalinux/kernel-kvm-modules-corepkg:rpm/almalinux/kernel-kvm-modules-extrapkg:rpm/almalinux/kernel-kvm-modules-internalpkg:rpm/almalinux/kernel-kvm-modules-partnerpkg:rpm/almalinux/kernel-modulespkg:rpm/almalinux/kernel-modules-corepkg:rpm/almalinux/kernel-modules-extrapkg:rpm/almalinux/kernel-modules-extra-matchedpkg:rpm/almalinux/kernel-modules-internalpkg:rpm/almalinux/kernel-modules-partnerpkg:rpm/almalinux/kernel-rtpkg:rpm/almalinux/kernel-rt-64kpkg:rpm/almalinux/kernel-rt-64k-corepkg:rpm/almalinux/kernel-rt-64k-debugpkg:rpm/almalinux/kernel-rt-64k-debug-corepkg:rpm/almalinux/kernel-rt-64k-debug-develpkg:rpm/almalinux/kernel-rt-64k-debug-devel-matchedpkg:rpm/almalinux/kernel-rt-64k-debug-modulespkg:rpm/almalinux/kernel-rt-64k-debug-modules-corepkg:rpm/almalinux/kernel-rt-64k-debug-modules-extrapkg:rpm/almalinux/kernel-rt-64k-debug-modules-internalpkg:rpm/almalinux/kernel-rt-64k-debug-modules-partnerpkg:rpm/almalinux/kernel-rt-64k-develpkg:rpm/almalinux/kernel-rt-64k-devel-matchedpkg:rpm/almalinux/kernel-rt-64k-modulespkg:rpm/almalinux/kernel-rt-64k-modules-corepkg:rpm/almalinux/kernel-rt-64k-modules-extrapkg:rpm/almalinux/kernel-rt-64k-modules-internalpkg:rpm/almalinux/kernel-rt-64k-modules-partnerpkg:rpm/almalinux/kernel-rt-corepkg:rpm/almalinux/kernel-rt-debugpkg:rpm/almalinux/kernel-rt-debug-corepkg:rpm/almalinux/kernel-rt-debug-develpkg:rpm/almalinux/kernel-rt-debug-devel-matchedpkg:rpm/almalinux/kernel-rt-debug-modulespkg:rpm/almalinux/kernel-rt-debug-modules-corepkg:rpm/almalinux/kernel-rt-debug-modules-extrapkg:rpm/almalinux/kernel-rt-debug-modules-internalpkg:rpm/almalinux/kernel-rt-debug-modules-partnerpkg:rpm/almalinux/kernel-rt-develpkg:rpm/almalinux/kernel-rt-devel-matchedpkg:rpm/almalinux/kernel-rt-modulespkg:rpm/almalinux/kernel-rt-modules-corepkg:rpm/almalinux/kernel-rt-modules-extrapkg:rpm/almalinux/kernel-rt-modules-internalpkg:rpm/almalinux/kernel-rt-modules-partnerpkg:rpm/almalinux/kernel-selftests-internalpkg:rpm/almalinux/kernel-toolspkg:rpm/almalinux/kernel-tools-libspkg:rpm/almalinux/kernel-tools-libs-develpkg:rpm/almalinux/kernel-uki-virtpkg:rpm/almalinux/kernel-uki-virt-addonspkg:rpm/almalinux/kernel-zfcpdumppkg:rpm/almalinux/kernel-zfcpdump-corepkg:rpm/almalinux/kernel-zfcpdump-develpkg:rpm/almalinux/kernel-zfcpdump-devel-matchedpkg:rpm/almalinux/kernel-zfcpdump-modulespkg:rpm/almalinux/kernel-zfcpdump-modules-corepkg:rpm/almalinux/kernel-zfcpdump-modules-extrapkg:rpm/almalinux/kernel-zfcpdump-modules-internalpkg:rpm/almalinux/kernel-zfcpdump-modules-partnerpkg:rpm/almalinux/libperfpkg:rpm/almalinux/libperf-develpkg:rpm/almalinux/perfpkg:rpm/almalinux/python3-perfpkg:rpm/almalinux/rtlapkg:rpm/almalinux/rvpkg:rpm/opensuse/kernel-source&distro=openSUSE%20Tumbleweedpkg:rpm/suse/kernel-livepatch-SLE16_Update_0&distro=SUSE%20Linux%20Enterprise%20Server%2016.0pkg:rpm/suse/kernel-livepatch-SLE16_Update_0&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20applications%2016.0pkg:rpm/suse/kernel-livepatch-SLE16_Update_10&distro=SUSE%20Linux%20Enterprise%20Server%2016.0pkg:rpm/suse/kernel-livepatch-SLE16_Update_10&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20applications%2016.0pkg:rpm/suse/kernel-livepatch-SLE16_Update_1&distro=SUSE%20Linux%20Enterprise%20Server%2016.0pkg:rpm/suse/kernel-livepatch-SLE16_Update_1&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20applications%2016.0pkg:rpm/suse/kernel-livepatch-SLE16_Update_2&distro=SUSE%20Linux%20Enterprise%20Server%2016.0pkg:rpm/suse/kernel-livepatch-SLE16_Update_2&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20applications%2016.0pkg:rpm/suse/kernel-livepatch-SLE16_Update_3&distro=SUSE%20Linux%20Enterprise%20Server%2016.0pkg:rpm/suse/kernel-livepatch-SLE16_Update_3&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20applications%2016.0pkg:rpm/suse/kernel-livepatch-SLE16_Update_4&distro=SUSE%20Linux%20Enterprise%20Server%2016.0pkg:rpm/suse/kernel-livepatch-SLE16_Update_4&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20applications%2016.0pkg:rpm/suse/kernel-livepatch-SLE16_Update_5&distro=SUSE%20Linux%20Enterprise%20Server%2016.0pkg:rpm/suse/kernel-livepatch-SLE16_Update_5&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20applications%2016.0pkg:rpm/suse/kernel-livepatch-SLE16_Update_5&distro=SUSE%20Linux%20Micro%206.2pkg:rpm/suse/kernel-livepatch-SLE16_Update_6&distro=SUSE%20Linux%20Enterprise%20Server%2016.0pkg:rpm/suse/kernel-livepatch-SLE16_Update_6&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20applications%2016.0pkg:rpm/suse/kernel-livepatch-SLE16_Update_7&distro=SUSE%20Linux%20Enterprise%20Server%2016.0pkg:rpm/suse/kernel-livepatch-SLE16_Update_7&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20applications%2016.0pkg:rpm/suse/kernel-livepatch-SLE16_Update_8&distro=SUSE%20Linux%20Enterprise%20Server%2016.0pkg:rpm/suse/kernel-livepatch-SLE16_Update_8&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20applications%2016.0pkg:rpm/suse/kernel-livepatch-SLE16_Update_9&distro=SUSE%20Linux%20Enterprise%20Server%2016.0pkg:rpm/suse/kernel-livepatch-SLE16_Update_9&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20applications%2016.0
< 4.18.0-553.125.1.el8_10+ 147 more
- (no CPE)range: < 4.18.0-553.125.1.el8_10
- (no CPE)range: < 5.14.0-687.10.1.el9_8
- (no CPE)range: < 5.14.0-687.10.1.el9_8
- (no CPE)range: < 5.14.0-687.10.1.el9_8
- (no CPE)range: < 5.14.0-687.10.1.el9_8
- (no CPE)range: < 5.14.0-687.10.1.el9_8
- (no CPE)range: < 5.14.0-687.10.1.el9_8
- (no CPE)range: < 5.14.0-687.10.1.el9_8
- (no CPE)range: < 5.14.0-687.10.1.el9_8
- (no CPE)range: < 5.14.0-687.10.1.el9_8
- (no CPE)range: < 5.14.0-687.10.1.el9_8
- (no CPE)range: < 5.14.0-611.54.6.el9_7
- (no CPE)range: < 5.14.0-611.54.6.el9_7
- (no CPE)range: < 6.12.0-124.56.5.el10_1
- (no CPE)range: < 6.12.0-124.56.5.el10_1
- (no CPE)range: < 5.14.0-687.10.1.el9_8
- (no CPE)range: < 5.14.0-687.10.1.el9_8
- (no CPE)range: < 5.14.0-687.10.1.el9_8
- (no CPE)range: < 5.14.0-687.10.1.el9_8
- (no CPE)range: < 5.14.0-687.10.1.el9_8
- (no CPE)range: < 5.14.0-611.54.6.el9_7
- (no CPE)range: < 5.14.0-611.54.6.el9_7
- (no CPE)range: < 6.12.0-124.56.5.el10_1
- (no CPE)range: < 6.12.0-124.56.5.el10_1
- (no CPE)range: < 5.14.0-687.10.1.el9_8
- (no CPE)range: < 5.14.0-687.10.1.el9_8
- (no CPE)range: < 5.14.0-687.10.1.el9_8
- (no CPE)range: < 5.14.0-687.10.1.el9_8
- (no CPE)range: < 5.14.0-687.10.1.el9_8
- (no CPE)range: < 5.14.0-687.10.1.el9_8
- (no CPE)range: < 5.14.0-687.10.1.el9_8
- (no CPE)range: < 5.14.0-687.10.1.el9_8
- (no CPE)range: < 5.14.0-687.10.1.el9_8
- (no CPE)range: < 5.14.0-687.10.1.el9_8
- (no CPE)range: < 4.18.0-553.124.4.el8_10
- (no CPE)range: < 5.14.0-611.54.6.el9_7
- (no CPE)range: < 5.14.0-687.10.1.el9_8
- (no CPE)range: < 5.14.0-611.54.6.el9_7
- (no CPE)range: < 5.14.0-687.10.1.el9_8
- (no CPE)range: < 5.14.0-687.10.1.el9_8
- (no CPE)range: < 5.14.0-687.10.1.el9_8
- (no CPE)range: < 5.14.0-687.10.1.el9_8
- (no CPE)range: < 4.18.0-553.124.4.el8_10
- (no CPE)range: < 5.14.0-611.54.6.el9_7
- (no CPE)range: < 5.14.0-611.54.6.el9_7
- (no CPE)range: < 5.14.0-611.54.6.el9_7
- (no CPE)range: < 5.14.0-611.54.6.el9_7
- (no CPE)range: < 5.14.0-611.54.6.el9_7
- (no CPE)range: < 5.14.0-611.54.6.el9_7
- (no CPE)range: < 5.14.0-611.54.6.el9_7
- (no CPE)range: < 5.14.0-611.54.6.el9_7
- (no CPE)range: < 5.14.0-611.54.6.el9_7
- (no CPE)range: < 5.14.0-611.54.6.el9_7
- (no CPE)range: < 5.14.0-611.54.6.el9_7
- (no CPE)range: < 5.14.0-611.54.6.el9_7
- (no CPE)range: < 5.14.0-611.54.6.el9_7
- (no CPE)range: < 5.14.0-611.54.6.el9_7
- (no CPE)range: < 5.14.0-611.54.6.el9_7
- (no CPE)range: < 5.14.0-611.54.6.el9_7
- (no CPE)range: < 5.14.0-611.54.6.el9_7
- (no CPE)range: < 5.14.0-611.54.6.el9_7
- (no CPE)range: < 5.14.0-687.10.1.el9_8
- (no CPE)range: < 5.14.0-687.10.1.el9_8
- (no CPE)range: < 5.14.0-687.10.1.el9_8
- (no CPE)range: < 6.12.0-211.16.1.el10_2
- (no CPE)range: < 4.18.0-553.124.4.el8_10
- (no CPE)range: < 5.14.0-611.54.6.el9_7
- (no CPE)range: < 5.14.0-687.10.1.el9_8
- (no CPE)range: < 5.14.0-687.10.1.el9_8
- (no CPE)range: < 5.14.0-687.10.1.el9_8
- (no CPE)range: < 5.14.0-687.10.1.el9_8
- (no CPE)range: < 5.14.0-687.10.1.el9_8
- (no CPE)range: < 5.14.0-687.10.1.el9_8
- (no CPE)range: < 5.14.0-611.54.6.el9_7
- (no CPE)range: < 5.14.0-687.10.1.el9_8
- (no CPE)range: < 5.14.0-687.10.1.el9_8
- (no CPE)range: < 5.14.0-687.10.1.el9_8
- (no CPE)range: < 5.14.0-611.54.6.el9_7
- (no CPE)range: < 5.14.0-611.54.6.el9_7
- (no CPE)range: < 5.14.0-687.10.1.el9_8
- (no CPE)range: < 5.14.0-611.54.6.el9_7
- (no CPE)range: < 5.14.0-687.10.1.el9_8
- (no CPE)range: < 5.14.0-687.10.1.el9_8
- (no CPE)range: < 5.14.0-687.10.1.el9_8
- (no CPE)range: < 5.14.0-611.54.6.el9_7
- (no CPE)range: < 5.14.0-611.54.6.el9_7
- (no CPE)range: < 5.14.0-687.10.1.el9_8
- (no CPE)range: < 5.14.0-687.10.1.el9_8
- (no CPE)range: < 5.14.0-687.10.1.el9_8
- (no CPE)range: < 5.14.0-687.10.1.el9_8
- (no CPE)range: < 5.14.0-611.54.6.el9_7
- (no CPE)range: < 5.14.0-687.10.1.el9_8
- (no CPE)range: < 5.14.0-687.10.1.el9_8
- (no CPE)range: < 5.14.0-687.10.1.el9_8
- (no CPE)range: < 5.14.0-611.54.6.el9_7
- (no CPE)range: < 5.14.0-611.54.6.el9_7
- (no CPE)range: < 5.14.0-687.10.1.el9_8
- (no CPE)range: < 5.14.0-611.54.6.el9_7
- (no CPE)range: < 5.14.0-687.10.1.el9_8
- (no CPE)range: < 5.14.0-687.10.1.el9_8
- (no CPE)range: < 5.14.0-687.10.1.el9_8
- (no CPE)range: < 5.14.0-611.54.6.el9_7
- (no CPE)range: < 5.14.0-611.54.6.el9_7
- (no CPE)range: < 4.18.0-553.124.4.el8_10
- (no CPE)range: < 5.14.0-687.10.1.el9_8
- (no CPE)range: < 5.14.0-687.10.1.el9_8
- (no CPE)range: < 5.14.0-687.10.1.el9_8
- (no CPE)range: < 5.14.0-687.10.1.el9_8
- (no CPE)range: < 5.14.0-687.10.1.el9_8
- (no CPE)range: < 5.14.0-687.10.1.el9_8
- (no CPE)range: < 5.14.0-687.10.1.el9_8
- (no CPE)range: < 5.14.0-687.10.1.el9_8
- (no CPE)range: < 5.14.0-687.10.1.el9_8
- (no CPE)range: < 5.14.0-687.10.1.el9_8
- (no CPE)range: < 5.14.0-687.10.1.el9_8
- (no CPE)range: < 5.14.0-687.10.1.el9_8
- (no CPE)range: < 4.18.0-553.124.4.el8_10
- (no CPE)range: < 5.14.0-611.54.6.el9_7
- (no CPE)range: < 5.14.0-687.10.1.el9_8
- (no CPE)range: < 5.14.0-611.54.6.el9_7
- (no CPE)range: < 5.14.0-687.10.1.el9_8
- (no CPE)range: < 5.14.0-687.10.1.el9_8
- (no CPE)range: < 5.14.0-687.10.1.el9_8
- (no CPE)range: < 5.14.0-687.10.1.el9_8
- (no CPE)range: < 7.0.9-1.1
- (no CPE)range: < 13-160000.4.3
- (no CPE)range: < 13-160000.4.3
- (no CPE)range: < 2-160000.1.1
- (no CPE)range: < 2-160000.1.1
- (no CPE)range: < 11-160000.1.1
- (no CPE)range: < 11-160000.1.1
- (no CPE)range: < 9-160000.1.1
- (no CPE)range: < 9-160000.1.1
- (no CPE)range: < 8-160000.1.1
- (no CPE)range: < 8-160000.1.1
- (no CPE)range: < 7-160000.1.1
- (no CPE)range: < 7-160000.1.1
- (no CPE)range: < 6-160000.1.1
- (no CPE)range: < 6-160000.1.1
- (no CPE)range: < 6-160000.1.1
- (no CPE)range: < 5-160000.1.1
- (no CPE)range: < 5-160000.1.1
- (no CPE)range: < 4-160000.1.1
- (no CPE)range: < 4-160000.1.1
- (no CPE)range: < 3-160000.1.1
- (no CPE)range: < 3-160000.1.1
- (no CPE)range: < 2-160000.1.1
- (no CPE)range: < 2-160000.1.1
Patches
Vulnerability mechanics
References
13- www.openwall.com/lists/oss-security/2026/05/15/9nvd
- www.openwall.com/lists/oss-security/2026/05/20/14nvd
- www.openwall.com/lists/oss-security/2026/05/20/16nvd
- git.kernel.org/stable/c/01363cb3fbd0238ffdeb09f53e9039c9edf8a730nvd
- git.kernel.org/stable/c/15b828a46f305ae9f05a7c16914b3ce273474205nvd
- git.kernel.org/stable/c/2a93a4fac7b6051d3be7cd1b015fe7320cd0404dnvd
- git.kernel.org/stable/c/31e62c2ebbfdc3fe3dbdf5e02c92a9dc67087a3anvd
- git.kernel.org/stable/c/4709234fd1b95136ceb789f639b1e7ea5de1b181nvd
- git.kernel.org/stable/c/6e5b51e74a40d377bcd3081dd33fbaa0e1aa7e3dnvd
- git.kernel.org/stable/c/8f907d345bae8f4b3f004c5abc56bf2dfb851ea7nvd
- git.kernel.org/stable/c/93d4ba49d18e3d7fb41a9927c2d0cca5e9dfefd6nvd
- lists.debian.org/debian-lts-announce/2026/05/msg00032.htmlnvd
- lists.debian.org/debian-lts-announce/2026/05/msg00035.htmlnvd
News mentions
8- Weekly Metasploit Update: NTLM Relay Priv Esc, MCP Server Integration, Paperclip AI RCE Chain, and moreRapid7 Blog · Jun 19, 2026
- ⚡ Weekly Recap: Linux Flaws, Defender 0-Days, Router Botnets, and Supply Chain ChaosThe Hacker News · May 25, 2026
- Nine-Year-Old Linux Kernel Flaw Leaks SSH Keys and Password HashesInfosecurity Magazine · May 21, 2026
- 9-Year-Old Linux Kernel Flaw Enables Root Command Execution on Major DistrosThe Hacker News · May 21, 2026
- DirtyDecrypt PoC Released for Linux Kernel CVE-2026-31635 LPE VulnerabilityThe Hacker News · May 19, 2026
- Linux kernel flaw opens root-only files to unprivileged usersThe Register Security · May 18, 2026
- ⚡ Weekly Recap: Exchange 0-Day, npm Worm, Fake AI Repo, Cisco Exploit and MoreThe Hacker News · May 18, 2026
- Impact of Linux Kernel vulnerabilities on B&R productsCISA ICS Advisories