CVE-2026-46054

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description The SELinux security model for overlayfs allows access if the current task can access the top-level user file and the mounter's credentials are sufficient for the lower-level backing file. However, access controls were not properly enforced for mmap() and mprotect() operations on overlayfs filesystems. The issue is addressed by using the security mmap backing file() LSM hook for mmap() operations and utilizing the backing file API and a new LSM blob to enforce mprotect() access controls.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.