cve 2026-46005

CVE-2026-46005 is a Linux kernel XFS vulnerability involving a resource leak in the xfs_alloc_buftarg() function, where an error path fails to release a DAX device reference. Published by NVD on May 27, 2026, after kernel.org assigned a CVE to a fixed bug, this issue highlights how routine kernel correctness fixes become operational inventory events in modern vulnerability tracking. While the patch is small, the vulnerability matters for administrators managing storage, persistent memory, and long-lived server workloads. The tag covers discussions on the CVE's implications for Linux kernel security, patch management, and the broader context of vulnerability tracking in enterprise IT environments.