CVE-2026-46328
HIGH
Published Jun 9, 2026
Modified Jun 14, 2026
Description
In the Linux kernel, the following vulnerability has been resolved: apparmor: fix rlimit for posix cpu timers Posix cpu timers requires an additional step beyond setting the rlimit. Refactor the code so its clear when what code is setting the limit and conditionally update the posix cpu timers when appropriate.
CVSS v3.1 Score
7.3
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:L/A:H
EPSS — Exploit Prediction
0.0011
Probability of exploitation
0.02%
Percentile rank
EPSS estimates the probability that this vulnerability will be exploited in the wild within the next 30 days. A higher score means more likely to be exploited.
References
Other References
https://git.kernel.org/stable/c/1f736dfe27c857b78f8461cd7c3dd9640be74b37
https://git.kernel.org/stable/c/2232d7cd243833ad750cae656d1817fe43744a09
https://git.kernel.org/stable/c/28aa93fcfb33b6d580c5df4ae8b6d13fb0e6fcd3
https://git.kernel.org/stable/c/57d51d41b90eface809b72e0e009b50546492f1f
https://git.kernel.org/stable/c/6ca56813f4a589f536adceb42882855d91fb1125
https://git.kernel.org/stable/c/9bf1fa150775b0c6b794e4b6a2c0395e13777999
https://git.kernel.org/stable/c/e1cc11550b2f66687a374536c9dfdddcefca0efe
https://git.kernel.org/stable/c/e43818b16815c0c2bf933ef28316f8e704e5e0ef
Frequently Asked Questions
What is CVE-2026-46328? +
In the Linux kernel, the following vulnerability has been resolved:
apparmor: fix rlimit for posix cpu timers
Posix cpu timers requires an additional step beyond setting the rlimit.
Refactor the code so its clear when what code is setting the
limit and conditionally update the posix cpu timers when appropriate. It has a CVSS v3.1 base score of 7.3 (HIGH).
How severe is CVE-2026-46328? +
CVE-2026-46328 has a CVSS v3.1 score of 7.3 out of 10, rated HIGH. This is a high-severity vulnerability that should be prioritized for patching. The EPSS score is 0.0011, placing it in the 0th percentile for exploitation probability.
How do I check if I'm vulnerable to CVE-2026-46328? +
You can use Secably's free Website Scanner to check your website for known vulnerabilities. For infrastructure scanning, use the Port Scanner to identify exposed services that may be affected. Check the vendor advisories linked above for specific patch and version information.