CVE-2026-46080

medium Red Hat
Published: May 27, 2026 (44 days ago)
Last Modified: May 27, 2026
Vendor: Red Hat
Source: REDHAT

Description

A flaw was found in the Linux kernel's Oracle Cluster File System 2 (ocfs2) component. During direct I/O (DIO) write operations, specifically in the `ocfs2_dio_end_io_write` function, an issue with transaction splitting can lead to credit exhaustion in the Journaling Block Device 2 (JBD2) subsystem. This can be exploited by a local attacker to cause a denial of service (DoS) by preventing further journaling operations.

CWE

CWE-770

Affected Products

Red Hat Enterprise Linux 10Red Hat Enterprise Linux 6Red Hat Enterprise Linux 7Red Hat Enterprise Linux 8Red Hat Enterprise Linux 9

References