CVE-2026-46046

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A refcount leak occurs in the ext4 filesystem when block csum is false. This happens because the function ext4 xattr inode dec ref all() calls ext4 get inode loc() to obtain iloc.bh but fails to release it using the brelse() function. This leads to a buffer-head leak that consumes system memory over time.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.