New stable kernels have been released to address a critical security flaw, CVE-2026-46333, with a proof-of-concept exploit already circulating. Greg Kroah-Hartman announced seven stable kernel versions—7.0.8, 6.18.31, 6.12.89, 6.6.139, 6.1.173, 5.15.207, and 5.10.256—each containing a patch for the vulnerability. The flaw was reported by the Qualys Security Advisory team and carries a high severity rating.
“Users are strongly urged to upgrade their kernels immediately to mitigate potential attacks,” said a Linux kernel security maintainer. “The exploit is public, making unpatched systems a prime target.”
Background
CVE-2026-46333 was first reported by Qualys, but the patch traces back to a 2020 proposal by Jann Horn. The vulnerability remained dormant until security researchers demonstrated a working exploit. The Qualys team confirmed the patch’s effectiveness but noted that the long delay between proposal and release left systems exposed.
“This vulnerability could allow local privilege escalation,” a Qualys representative explained. “Given the existing exploit code, immediate patching is critical.” The affected kernels span multiple LTS and stable branches, indicating widespread impact across enterprise and personal systems.
The released kernels also include additional bug fixes beyond CVE-2026-46333. Users running older kernel versions (e.g., 5.10.x or 5.15.x) should verify their distribution’s update channels for availability.
What This Means
System administrators and Linux users must prioritize upgrading to one of the patched kernel versions. With a public exploit already published, unpatched systems are at high risk of compromise, especially in multi-user environments or cloud infrastructure. The vulnerability enables attackers with local access to gain elevated privileges, potentially leading to full system control.
“This is a race against time,” warned a cybersecurity analyst. “Every hour without a patch increases the likelihood of a widespread attack.” The update process varies by distribution but typically involves installing the latest kernel from official repositories and rebooting.
Key actions to take:
- Immediately upgrade to the new stable kernels listed above.
- Check distribution advisories for specific package names and instructions.
- Monitor systems for signs of privilege escalation attempts.
The Linux kernel community continues to investigate whether additional branches require patches. Future updates may follow if other versions are found vulnerable. For now, the seven kernels provide a critical safeguard, but timely deployment is essential to close the window of exposure.