cve 2026 46164

CVE-2026-46164 is a Linux kernel vulnerability in the Btrfs filesystem, disclosed by NVD on May 28, 2026. The flaw involves a double-free of a space-info sub-group object when kobject_init_and_add() fails during a specific initialization error path. This memory-management bug resides in an uncommon code path but is considered serious because such errors can lead to system instability or security issues. As of the disclosure, the vulnerability has not been scored by NVD, and there is no evidence of active exploitation. The fix is a one-line kernel patch. This tag covers discussions about the vulnerability details, its implications for Linux storage security, and the kernel patch addressing it.