{"api_version":"1","generated_at":"2026-06-14T18:57:55+00:00","cve":"CVE-2026-46328","urls":{"html":"https://cve.report/CVE-2026-46328","api":"https://cve.report/api/cve/CVE-2026-46328.json","docs":"https://cve.report/api","cve_org":"https://www.cve.org/CVERecord?id=CVE-2026-46328","nvd":"https://nvd.nist.gov/vuln/detail/CVE-2026-46328"},"summary":{"title":"apparmor: fix rlimit for posix cpu timers","description":"In the Linux kernel, the following vulnerability has been resolved:\n\napparmor: fix rlimit for posix cpu timers\n\nPosix cpu timers requires an additional step beyond setting the rlimit.\nRefactor the code so its clear when what code is setting the\nlimit and conditionally update the posix cpu timers when appropriate.","state":"PUBLISHED","assigner":"Linux","published_at":"2026-06-09 14:16:42","updated_at":"2026-06-14 06:16:25"},"problem_types":[],"metrics":[{"version":"3.1","source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","type":"Secondary","score":"7.3","severity":"HIGH","vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:L/A:H","data":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:L/A:H","baseScore":7.3,"baseSeverity":"HIGH","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"NONE","integrityImpact":"LOW","availabilityImpact":"HIGH"}},{"version":"3.1","source":"CNA","type":"DECLARED","score":"7.3","severity":"HIGH","vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:L/A:H","data":{"baseScore":7.3,"baseSeverity":"HIGH","vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:L/A:H","version":"3.1"}}],"references":[{"url":"https://git.kernel.org/stable/c/2232d7cd243833ad750cae656d1817fe43744a09","name":"https://git.kernel.org/stable/c/2232d7cd243833ad750cae656d1817fe43744a09","refsource":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":[],"title":"","mime":"","httpstatus":"","archivestatus":"0"},{"url":"https://git.kernel.org/stable/c/9bf1fa150775b0c6b794e4b6a2c0395e13777999","name":"https://git.kernel.org/stable/c/9bf1fa150775b0c6b794e4b6a2c0395e13777999","refsource":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":[],"title":"","mime":"","httpstatus":"","archivestatus":"0"},{"url":"https://git.kernel.org/stable/c/1f736dfe27c857b78f8461cd7c3dd9640be74b37","name":"https://git.kernel.org/stable/c/1f736dfe27c857b78f8461cd7c3dd9640be74b37","refsource":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":[],"title":"","mime":"","httpstatus":"","archivestatus":"0"},{"url":"https://git.kernel.org/stable/c/e43818b16815c0c2bf933ef28316f8e704e5e0ef","name":"https://git.kernel.org/stable/c/e43818b16815c0c2bf933ef28316f8e704e5e0ef","refsource":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":[],"title":"","mime":"","httpstatus":"","archivestatus":"0"},{"url":"https://git.kernel.org/stable/c/e1cc11550b2f66687a374536c9dfdddcefca0efe","name":"https://git.kernel.org/stable/c/e1cc11550b2f66687a374536c9dfdddcefca0efe","refsource":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":[],"title":"","mime":"","httpstatus":"","archivestatus":"0"},{"url":"https://git.kernel.org/stable/c/6ca56813f4a589f536adceb42882855d91fb1125","name":"https://git.kernel.org/stable/c/6ca56813f4a589f536adceb42882855d91fb1125","refsource":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":[],"title":"","mime":"","httpstatus":"","archivestatus":"0"},{"url":"https://git.kernel.org/stable/c/57d51d41b90eface809b72e0e009b50546492f1f","name":"https://git.kernel.org/stable/c/57d51d41b90eface809b72e0e009b50546492f1f","refsource":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":[],"title":"","mime":"","httpstatus":"","archivestatus":"0"},{"url":"https://git.kernel.org/stable/c/28aa93fcfb33b6d580c5df4ae8b6d13fb0e6fcd3","name":"https://git.kernel.org/stable/c/28aa93fcfb33b6d580c5df4ae8b6d13fb0e6fcd3","refsource":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":[],"title":"","mime":"","httpstatus":"","archivestatus":"0"},{"url":"https://www.cve.org/CVERecord?id=CVE-2026-46328","name":"CVE Program record","refsource":"CVE.ORG","tags":["canonical"]},{"url":"https://nvd.nist.gov/vuln/detail/CVE-2026-46328","name":"NVD vulnerability detail","refsource":"NVD","tags":["canonical","analysis"]}],"affected":[{"source":"CNA","vendor":"Linux","product":"Linux","version":"affected baa73d9e478ff32d62f3f9422822b59dd9a95a21 e1cc11550b2f66687a374536c9dfdddcefca0efe git","platforms":[]},{"source":"CNA","vendor":"Linux","product":"Linux","version":"affected baa73d9e478ff32d62f3f9422822b59dd9a95a21 2232d7cd243833ad750cae656d1817fe43744a09 git","platforms":[]},{"source":"CNA","vendor":"Linux","product":"Linux","version":"affected baa73d9e478ff32d62f3f9422822b59dd9a95a21 28aa93fcfb33b6d580c5df4ae8b6d13fb0e6fcd3 git","platforms":[]},{"source":"CNA","vendor":"Linux","product":"Linux","version":"affected baa73d9e478ff32d62f3f9422822b59dd9a95a21 1f736dfe27c857b78f8461cd7c3dd9640be74b37 git","platforms":[]},{"source":"CNA","vendor":"Linux","product":"Linux","version":"affected baa73d9e478ff32d62f3f9422822b59dd9a95a21 e43818b16815c0c2bf933ef28316f8e704e5e0ef git","platforms":[]},{"source":"CNA","vendor":"Linux","product":"Linux","version":"affected baa73d9e478ff32d62f3f9422822b59dd9a95a21 9bf1fa150775b0c6b794e4b6a2c0395e13777999 git","platforms":[]},{"source":"CNA","vendor":"Linux","product":"Linux","version":"affected baa73d9e478ff32d62f3f9422822b59dd9a95a21 57d51d41b90eface809b72e0e009b50546492f1f git","platforms":[]},{"source":"CNA","vendor":"Linux","product":"Linux","version":"affected baa73d9e478ff32d62f3f9422822b59dd9a95a21 6ca56813f4a589f536adceb42882855d91fb1125 git","platforms":[]},{"source":"CNA","vendor":"Linux","product":"Linux","version":"affected 4.10","platforms":[]},{"source":"CNA","vendor":"Linux","product":"Linux","version":"unaffected 4.10 semver","platforms":[]},{"source":"CNA","vendor":"Linux","product":"Linux","version":"unaffected 5.10.252 5.10.* semver","platforms":[]},{"source":"CNA","vendor":"Linux","product":"Linux","version":"unaffected 5.15.202 5.15.* semver","platforms":[]},{"source":"CNA","vendor":"Linux","product":"Linux","version":"unaffected 6.1.165 6.1.* semver","platforms":[]},{"source":"CNA","vendor":"Linux","product":"Linux","version":"unaffected 6.6.128 6.6.* semver","platforms":[]},{"source":"CNA","vendor":"Linux","product":"Linux","version":"unaffected 6.12.75 6.12.* semver","platforms":[]},{"source":"CNA","vendor":"Linux","product":"Linux","version":"unaffected 6.18.14 6.18.* semver","platforms":[]},{"source":"CNA","vendor":"Linux","product":"Linux","version":"unaffected 6.19.4 6.19.* semver","platforms":[]},{"source":"CNA","vendor":"Linux","product":"Linux","version":"unaffected 7.0 * original_commit_for_fix","platforms":[]}],"timeline":[],"solutions":[],"workarounds":[],"exploits":[],"credits":[],"nvd_cpes":[],"vendor_comments":[],"enrichments":{"kev":null,"epss":{"cve_year":"2026","cve_id":"46328","cve":"CVE-2026-46328","epss":"0.000240000","percentile":"0.073120000","score_date":"2026-06-13","updated_at":"2026-06-14 00:08:32"},"legacy_qids":[]},"source_records":{"cve_program":{"containers":{"cna":{"affected":[{"defaultStatus":"unaffected","product":"Linux","programFiles":["security/apparmor/resource.c"],"repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","vendor":"Linux","versions":[{"lessThan":"e1cc11550b2f66687a374536c9dfdddcefca0efe","status":"affected","version":"baa73d9e478ff32d62f3f9422822b59dd9a95a21","versionType":"git"},{"lessThan":"2232d7cd243833ad750cae656d1817fe43744a09","status":"affected","version":"baa73d9e478ff32d62f3f9422822b59dd9a95a21","versionType":"git"},{"lessThan":"28aa93fcfb33b6d580c5df4ae8b6d13fb0e6fcd3","status":"affected","version":"baa73d9e478ff32d62f3f9422822b59dd9a95a21","versionType":"git"},{"lessThan":"1f736dfe27c857b78f8461cd7c3dd9640be74b37","status":"affected","version":"baa73d9e478ff32d62f3f9422822b59dd9a95a21","versionType":"git"},{"lessThan":"e43818b16815c0c2bf933ef28316f8e704e5e0ef","status":"affected","version":"baa73d9e478ff32d62f3f9422822b59dd9a95a21","versionType":"git"},{"lessThan":"9bf1fa150775b0c6b794e4b6a2c0395e13777999","status":"affected","version":"baa73d9e478ff32d62f3f9422822b59dd9a95a21","versionType":"git"},{"lessThan":"57d51d41b90eface809b72e0e009b50546492f1f","status":"affected","version":"baa73d9e478ff32d62f3f9422822b59dd9a95a21","versionType":"git"},{"lessThan":"6ca56813f4a589f536adceb42882855d91fb1125","status":"affected","version":"baa73d9e478ff32d62f3f9422822b59dd9a95a21","versionType":"git"}]},{"defaultStatus":"affected","product":"Linux","programFiles":["security/apparmor/resource.c"],"repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","vendor":"Linux","versions":[{"status":"affected","version":"4.10"},{"lessThan":"4.10","status":"unaffected","version":"0","versionType":"semver"},{"lessThanOrEqual":"5.10.*","status":"unaffected","version":"5.10.252","versionType":"semver"},{"lessThanOrEqual":"5.15.*","status":"unaffected","version":"5.15.202","versionType":"semver"},{"lessThanOrEqual":"6.1.*","status":"unaffected","version":"6.1.165","versionType":"semver"},{"lessThanOrEqual":"6.6.*","status":"unaffected","version":"6.6.128","versionType":"semver"},{"lessThanOrEqual":"6.12.*","status":"unaffected","version":"6.12.75","versionType":"semver"},{"lessThanOrEqual":"6.18.*","status":"unaffected","version":"6.18.14","versionType":"semver"},{"lessThanOrEqual":"6.19.*","status":"unaffected","version":"6.19.4","versionType":"semver"},{"lessThanOrEqual":"*","status":"unaffected","version":"7.0","versionType":"original_commit_for_fix"}]}],"cpeApplicability":[{"nodes":[{"cpeMatch":[{"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionEndExcluding":"5.10.252","versionStartIncluding":"4.10","vulnerable":true},{"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionEndExcluding":"5.15.202","versionStartIncluding":"4.10","vulnerable":true},{"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionEndExcluding":"6.1.165","versionStartIncluding":"4.10","vulnerable":true},{"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionEndExcluding":"6.6.128","versionStartIncluding":"4.10","vulnerable":true},{"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionEndExcluding":"6.12.75","versionStartIncluding":"4.10","vulnerable":true},{"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionEndExcluding":"6.18.14","versionStartIncluding":"4.10","vulnerable":true},{"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionEndExcluding":"6.19.4","versionStartIncluding":"4.10","vulnerable":true},{"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionEndExcluding":"7.0","versionStartIncluding":"4.10","vulnerable":true}],"negate":false,"operator":"OR"}]}],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\napparmor: fix rlimit for posix cpu timers\n\nPosix cpu timers requires an additional step beyond setting the rlimit.\nRefactor the code so its clear when what code is setting the\nlimit and conditionally update the posix cpu timers when appropriate."}],"metrics":[{"cvssV3_1":{"baseScore":7.3,"baseSeverity":"HIGH","vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:L/A:H","version":"3.1"}}],"providerMetadata":{"dateUpdated":"2026-06-14T04:30:27.441Z","orgId":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","shortName":"Linux"},"references":[{"url":"https://git.kernel.org/stable/c/e1cc11550b2f66687a374536c9dfdddcefca0efe"},{"url":"https://git.kernel.org/stable/c/2232d7cd243833ad750cae656d1817fe43744a09"},{"url":"https://git.kernel.org/stable/c/28aa93fcfb33b6d580c5df4ae8b6d13fb0e6fcd3"},{"url":"https://git.kernel.org/stable/c/1f736dfe27c857b78f8461cd7c3dd9640be74b37"},{"url":"https://git.kernel.org/stable/c/e43818b16815c0c2bf933ef28316f8e704e5e0ef"},{"url":"https://git.kernel.org/stable/c/9bf1fa150775b0c6b794e4b6a2c0395e13777999"},{"url":"https://git.kernel.org/stable/c/57d51d41b90eface809b72e0e009b50546492f1f"},{"url":"https://git.kernel.org/stable/c/6ca56813f4a589f536adceb42882855d91fb1125"}],"title":"apparmor: fix rlimit for posix cpu timers","x_generator":{"engine":"bippy-1.2.0"}}},"cveMetadata":{"assignerOrgId":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","assignerShortName":"Linux","cveId":"CVE-2026-46328","datePublished":"2026-06-09T12:25:57.629Z","dateReserved":"2026-05-13T15:03:33.112Z","dateUpdated":"2026-06-14T04:30:27.441Z","state":"PUBLISHED"},"dataType":"CVE_RECORD","dataVersion":"5.2"},"nvd":{"publishedDate":"2026-06-09 14:16:42","lastModifiedDate":"2026-06-14 06:16:25","problem_types":[],"metrics":{"cvssMetricV31":[{"source":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:L/A:H","baseScore":7.3,"baseSeverity":"HIGH","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"NONE","integrityImpact":"LOW","availabilityImpact":"HIGH"},"exploitabilityScore":2,"impactScore":4.7}]},"configurations":[]},"legacy_mitre":{"record":{"CveYear":"2026","CveId":"46328","Ordinal":"1","Title":"apparmor: fix rlimit for posix cpu timers","CVE":"CVE-2026-46328","Year":"2026"},"notes":[{"CveYear":"2026","CveId":"46328","Ordinal":"1","NoteData":"In the Linux kernel, the following vulnerability has been resolved:\n\napparmor: fix rlimit for posix cpu timers\n\nPosix cpu timers requires an additional step beyond setting the rlimit.\nRefactor the code so its clear when what code is setting the\nlimit and conditionally update the posix cpu timers when appropriate.","Type":"Description","Title":"apparmor: fix rlimit for posix cpu timers"}]}}}