{"@context":"https://openvex.dev/ns/v0.2.0","@id":"https://database.harborguard.co/cve/CVE-2026-46280/vex.json","author":"HarborGuard Database","role":"Document Creator","timestamp":"2026-06-14T04:29:58.926Z","version":1,"tooling":"HarborGuard Database (https://database.harborguard.co)","statements":[{"vulnerability":{"name":"CVE-2026-46280","@id":"https://www.cve.org/CVERecord?id=CVE-2026-46280","description":"In the Linux kernel, the following vulnerability has been resolved:\n\nlib: test_hmm: evict device pages on file close to avoid use-after-free\n\nPatch series \"Minor hmm_test fixes and cleanups\".\n\nTwo bugfixes a cleanup for the HMM kernel selftests.  These were mostly\nreported by Zenghui Yu with special thanks to Lorenzo for analysing and\npointing out the problems.\n\n\nThis patch (of 3):\n\nWhen dmirror_fops_release() is called it frees the dmirror struct but\ndoesn't migrate device private pages back to"},"products":[{"@id":"cpe:2.3:a:linux:linux:*:*:*:*:*:*:*:*","identifiers":{"cpe23":"cpe:2.3:a:linux:linux:*:*:*:*:*:*:*:*"}},{"@id":"cpe:2.3:a:linux:linux:5.8:*:*:*:*:*:*:*","identifiers":{"cpe23":"cpe:2.3:a:linux:linux:5.8:*:*:*:*:*:*:*"}}],"status":"affected","action_statement":"Update to a fixed version: 0, 38f113f81d3f0adc658a4475dd3ecaec985e21d3, 5846715b6382dd4c6a69b35a56ca6115d33bc2a0, 6.6.140, 6.12.86, 6.18.27, 7.0.4, 7.1-rc1, 744dd97752ef1076a8d8672bb0d8aa2c7abc1144, 9de1eb0aac2862d6144b8db0ec1388e79f8bc3e1, bf477abd448c76bb8ea51c9b4f63a3a17c4b6239.","timestamp":"2026-06-14T04:29:58.926Z"}]}