{"@context":"https://openvex.dev/ns/v0.2.0","@id":"https://database.harborguard.co/cve/CVE-2026-46274/vex.json","author":"HarborGuard Database","role":"Document Creator","timestamp":"2026-06-14T04:29:55.098Z","version":1,"tooling":"HarborGuard Database (https://database.harborguard.co)","statements":[{"vulnerability":{"name":"CVE-2026-46274","@id":"https://www.cve.org/CVERecord?id=CVE-2026-46274","description":"In the Linux kernel, the following vulnerability has been resolved:\n\nio-wq: check that the predecessor is hashed in io_wq_remove_pending()\n\nio_wq_remove_pending() needs to fix up wq->hash_tail[] if the cancelled\nwork was the tail of its hash bucket. When doing this, it checks whether\nthe preceding entry in acct->work_list has the same hash value, but\nnever checks that the predecessor is hashed at all. io_get_work_hash()\nis simply atomic_read(&work->flags) >> IO_WQ_HASH_SHIFT, and the hash\nbits a"},"products":[{"@id":"cpe:2.3:a:linux:linux:*:*:*:*:*:*:*:*","identifiers":{"cpe23":"cpe:2.3:a:linux:linux:*:*:*:*:*:*:*:*"}},{"@id":"cpe:2.3:a:linux:linux:5.9:*:*:*:*:*:*:*","identifiers":{"cpe23":"cpe:2.3:a:linux:linux:5.9:*:*:*:*:*:*:*"}}],"status":"affected","action_statement":"Update to a fixed version: 0, 252c5051dba9c709b6a72f2866f93e5e618b3f06, 5.9, 5a20ebf0c81b61f5ea3b1b529c100cad69b9f603, 6.6.141, 6.12.91, 6.18.33, 7.0.10, 7.1-rc4, d376c131af7c7739a87ff037ed2fdb67c2542c8a, d6a2d7b04b5a093021a7a0e2e69e9d5237dfa8cc, d6bda9df0c0a3080804181464d5c0f4d78a4e769.","timestamp":"2026-06-14T04:29:55.098Z"}]}