CVE-2026-46154

medium Red Hat
EPSS Score
0.0%
Exploitation probability in 30 days
Top 96% most likely to be exploited
Published: May 28, 2026 (43 days ago)
Last Modified: May 28, 2026
Vendor: Red Hat
Source: REDHAT

Description

A flaw was found in the Linux kernel, specifically within the `sched_ext` component. This vulnerability, a use-after-free, occurs in the cgroup setters when the `scx_root` pointer is cached before a required lock is acquired. This can lead to a stale pointer if a scheduler is disabled and then re-enabled, allowing a local attacker to potentially cause a denial of service or achieve privilege escalation.

CWE

CWE-825

Affected Products

Red Hat Enterprise Linux 10Red Hat Enterprise Linux 6Red Hat Enterprise Linux 7Red Hat Enterprise Linux 8Red Hat Enterprise Linux 9

References