{"document":{"category":"csaf_vex","csaf_version":"2.0","title":"CVE-2026-46328: apparmor: fix rlimit for posix cpu timers","publisher":{"category":"vendor","name":"HarborGuard Database","namespace":"https://database.harborguard.co"},"tracking":{"id":"CVE-2026-46328","status":"final","version":"1","initial_release_date":"2026-06-09T12:25:57.629Z","current_release_date":"2026-06-14T04:30:27.441Z","revision_history":[{"date":"2026-06-09T12:25:57.629Z","number":"1","summary":"Initial machine-readable export from HarborGuard."}]},"distribution":{"tlp":{"label":"WHITE"},"text":"Public CVE data; freely redistributable."},"notes":[{"category":"description","text":"In the Linux kernel, the following vulnerability has been resolved:\n\napparmor: fix rlimit for posix cpu timers\n\nPosix cpu timers requires an additional step beyond setting the rlimit.\nRefactor the code so its clear when what code is setting the\nlimit and conditionally update the posix cpu timers when appropriate.","title":"CVE description"}],"references":[{"category":"self","summary":"CVE-2026-46328 on HarborGuard Database","url":"https://database.harborguard.co/cve/CVE-2026-46328"},{"category":"external","summary":"CVE Record","url":"https://www.cve.org/CVERecord?id=CVE-2026-46328"},{"category":"external","summary":"git.kernel.org","url":"https://git.kernel.org/stable/c/e1cc11550b2f66687a374536c9dfdddcefca0efe"},{"category":"external","summary":"git.kernel.org","url":"https://git.kernel.org/stable/c/2232d7cd243833ad750cae656d1817fe43744a09"},{"category":"external","summary":"git.kernel.org","url":"https://git.kernel.org/stable/c/28aa93fcfb33b6d580c5df4ae8b6d13fb0e6fcd3"},{"category":"external","summary":"git.kernel.org","url":"https://git.kernel.org/stable/c/1f736dfe27c857b78f8461cd7c3dd9640be74b37"},{"category":"external","summary":"git.kernel.org","url":"https://git.kernel.org/stable/c/e43818b16815c0c2bf933ef28316f8e704e5e0ef"},{"category":"external","summary":"git.kernel.org","url":"https://git.kernel.org/stable/c/9bf1fa150775b0c6b794e4b6a2c0395e13777999"},{"category":"external","summary":"git.kernel.org","url":"https://git.kernel.org/stable/c/57d51d41b90eface809b72e0e009b50546492f1f"},{"category":"external","summary":"git.kernel.org","url":"https://git.kernel.org/stable/c/6ca56813f4a589f536adceb42882855d91fb1125"}]},"product_tree":{"branches":[{"category":"vendor","name":"Linux","branches":[{"category":"product_name","name":"Linux","branches":[{"category":"product_version_range","name":">=baa73d9e478ff32d62f3f9422822b59dd9a95a21 <e1cc11550b2f66687a374536c9dfdddcefca0efe","product":{"name":"Linux Linux >=baa73d9e478ff32d62f3f9422822b59dd9a95a21 <e1cc11550b2f66687a374536c9dfdddcefca0efe","product_id":"CSAFPID-1","product_identification_helper":{"cpe":"cpe:2.3:a:linux:linux:*:*:*:*:*:*:*:*"}}},{"category":"product_version_range","name":">=baa73d9e478ff32d62f3f9422822b59dd9a95a21 <2232d7cd243833ad750cae656d1817fe43744a09","product":{"name":"Linux Linux >=baa73d9e478ff32d62f3f9422822b59dd9a95a21 <2232d7cd243833ad750cae656d1817fe43744a09","product_id":"CSAFPID-2","product_identification_helper":{"cpe":"cpe:2.3:a:linux:linux:*:*:*:*:*:*:*:*"}}},{"category":"product_version_range","name":">=baa73d9e478ff32d62f3f9422822b59dd9a95a21 <28aa93fcfb33b6d580c5df4ae8b6d13fb0e6fcd3","product":{"name":"Linux Linux >=baa73d9e478ff32d62f3f9422822b59dd9a95a21 <28aa93fcfb33b6d580c5df4ae8b6d13fb0e6fcd3","product_id":"CSAFPID-3","product_identification_helper":{"cpe":"cpe:2.3:a:linux:linux:*:*:*:*:*:*:*:*"}}},{"category":"product_version_range","name":">=baa73d9e478ff32d62f3f9422822b59dd9a95a21 <1f736dfe27c857b78f8461cd7c3dd9640be74b37","product":{"name":"Linux Linux >=baa73d9e478ff32d62f3f9422822b59dd9a95a21 <1f736dfe27c857b78f8461cd7c3dd9640be74b37","product_id":"CSAFPID-4","product_identification_helper":{"cpe":"cpe:2.3:a:linux:linux:*:*:*:*:*:*:*:*"}}},{"category":"product_version_range","name":">=baa73d9e478ff32d62f3f9422822b59dd9a95a21 <e43818b16815c0c2bf933ef28316f8e704e5e0ef","product":{"name":"Linux Linux >=baa73d9e478ff32d62f3f9422822b59dd9a95a21 <e43818b16815c0c2bf933ef28316f8e704e5e0ef","product_id":"CSAFPID-5","product_identification_helper":{"cpe":"cpe:2.3:a:linux:linux:*:*:*:*:*:*:*:*"}}},{"category":"product_version_range","name":">=baa73d9e478ff32d62f3f9422822b59dd9a95a21 <9bf1fa150775b0c6b794e4b6a2c0395e13777999","product":{"name":"Linux Linux >=baa73d9e478ff32d62f3f9422822b59dd9a95a21 <9bf1fa150775b0c6b794e4b6a2c0395e13777999","product_id":"CSAFPID-6","product_identification_helper":{"cpe":"cpe:2.3:a:linux:linux:*:*:*:*:*:*:*:*"}}},{"category":"product_version_range","name":">=baa73d9e478ff32d62f3f9422822b59dd9a95a21 <57d51d41b90eface809b72e0e009b50546492f1f","product":{"name":"Linux Linux >=baa73d9e478ff32d62f3f9422822b59dd9a95a21 <57d51d41b90eface809b72e0e009b50546492f1f","product_id":"CSAFPID-7","product_identification_helper":{"cpe":"cpe:2.3:a:linux:linux:*:*:*:*:*:*:*:*"}}},{"category":"product_version_range","name":">=baa73d9e478ff32d62f3f9422822b59dd9a95a21 <6ca56813f4a589f536adceb42882855d91fb1125","product":{"name":"Linux Linux >=baa73d9e478ff32d62f3f9422822b59dd9a95a21 <6ca56813f4a589f536adceb42882855d91fb1125","product_id":"CSAFPID-8","product_identification_helper":{"cpe":"cpe:2.3:a:linux:linux:*:*:*:*:*:*:*:*"}}}]}]},{"category":"vendor","name":"Linux","branches":[{"category":"product_name","name":"Linux","branches":[{"category":"product_version","name":"4.10","product":{"name":"Linux Linux 4.10","product_id":"CSAFPID-9","product_identification_helper":{"cpe":"cpe:2.3:a:linux:linux:4.10:*:*:*:*:*:*:*"}}},{"category":"product_version","name":"0","product":{"name":"Linux Linux 0","product_id":"CSAFPID-10","product_identification_helper":{"cpe":"cpe:2.3:a:linux:linux:4.10:*:*:*:*:*:*:*"}}},{"category":"product_version","name":"5.10.252","product":{"name":"Linux Linux 5.10.252","product_id":"CSAFPID-11","product_identification_helper":{"cpe":"cpe:2.3:a:linux:linux:4.10:*:*:*:*:*:*:*"}}},{"category":"product_version","name":"5.15.202","product":{"name":"Linux Linux 5.15.202","product_id":"CSAFPID-12","product_identification_helper":{"cpe":"cpe:2.3:a:linux:linux:4.10:*:*:*:*:*:*:*"}}},{"category":"product_version","name":"6.1.165","product":{"name":"Linux Linux 6.1.165","product_id":"CSAFPID-13","product_identification_helper":{"cpe":"cpe:2.3:a:linux:linux:4.10:*:*:*:*:*:*:*"}}},{"category":"product_version","name":"6.6.128","product":{"name":"Linux Linux 6.6.128","product_id":"CSAFPID-14","product_identification_helper":{"cpe":"cpe:2.3:a:linux:linux:4.10:*:*:*:*:*:*:*"}}},{"category":"product_version","name":"6.12.75","product":{"name":"Linux Linux 6.12.75","product_id":"CSAFPID-15","product_identification_helper":{"cpe":"cpe:2.3:a:linux:linux:4.10:*:*:*:*:*:*:*"}}},{"category":"product_version","name":"6.18.14","product":{"name":"Linux Linux 6.18.14","product_id":"CSAFPID-16","product_identification_helper":{"cpe":"cpe:2.3:a:linux:linux:4.10:*:*:*:*:*:*:*"}}},{"category":"product_version","name":"6.19.4","product":{"name":"Linux Linux 6.19.4","product_id":"CSAFPID-17","product_identification_helper":{"cpe":"cpe:2.3:a:linux:linux:4.10:*:*:*:*:*:*:*"}}},{"category":"product_version","name":"7.0","product":{"name":"Linux Linux 7.0","product_id":"CSAFPID-18","product_identification_helper":{"cpe":"cpe:2.3:a:linux:linux:4.10:*:*:*:*:*:*:*"}}}]}]}]},"vulnerabilities":[{"cve":"CVE-2026-46328","title":"apparmor: fix rlimit for posix cpu timers","notes":[{"category":"description","text":"In the Linux kernel, the following vulnerability has been resolved:\n\napparmor: fix rlimit for posix cpu timers\n\nPosix cpu timers requires an additional step beyond setting the rlimit.\nRefactor the code so its clear when what code is setting the\nlimit and conditionally update the posix cpu timers when appropriate.","title":"CVE description"}],"product_status":{"known_affected":["CSAFPID-1","CSAFPID-2","CSAFPID-3","CSAFPID-4","CSAFPID-5","CSAFPID-6","CSAFPID-7","CSAFPID-8","CSAFPID-9"],"fixed":["CSAFPID-10","CSAFPID-11","CSAFPID-12","CSAFPID-13","CSAFPID-14","CSAFPID-15","CSAFPID-16","CSAFPID-17","CSAFPID-18"]},"scores":[{"cvss_v3":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:L/A:H","baseScore":7.3,"baseSeverity":"HIGH"},"products":["CSAFPID-1","CSAFPID-2","CSAFPID-3","CSAFPID-4","CSAFPID-5","CSAFPID-6","CSAFPID-7","CSAFPID-8","CSAFPID-9"]}],"remediations":[{"category":"vendor_fix","details":"Update to a fixed version: 0, 1f736dfe27c857b78f8461cd7c3dd9640be74b37, 2232d7cd243833ad750cae656d1817fe43744a09, 28aa93fcfb33b6d580c5df4ae8b6d13fb0e6fcd3, 5.10.252, 5.15.202, 57d51d41b90eface809b72e0e009b50546492f1f, 6.1.165, 6.6.128, 6.12.75, 6.18.14, 6.19.4, 6ca56813f4a589f536adceb42882855d91fb1125, 7.0, 9bf1fa150775b0c6b794e4b6a2c0395e13777999, e1cc11550b2f66687a374536c9dfdddcefca0efe, e43818b16815c0c2bf933ef28316f8e704e5e0ef.","product_ids":["CSAFPID-1","CSAFPID-2","CSAFPID-3","CSAFPID-4","CSAFPID-5","CSAFPID-6","CSAFPID-7","CSAFPID-8","CSAFPID-9"]}]}]}