Description
In the Linux kernel, the following vulnerability has been resolved:

x86/CPU/AMD: Prevent improper isolation of shared resources in Zen2's op cache

Make sure resources are not improperly shared in the op cache and
cause instruction corruption this way.
Published: 2026-05-28
Score: 8.8 High
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

An improper isolation of shared resources in the AMD Zen2 instruction cache can lead to instruction corruption. When the op cache is accessed by multiple processes, critical data may be overwritten, causing the kernel execution flow to deviate unpredictably or crash. This flaw falls under CWE-653 and may ultimately allow arbitrary code execution or severe system instability if an attacker can trigger the offending cache behavior.

Affected Systems

Linux kernel builds that run on AMD Zen2 processors and have not yet received the op‑cache isolation commit are affected. The vulnerability is present in all officially supported kernel releases prior to the patches referenced in the advisory; specific version ranges are not enumerated in the payload.

Risk and Exploitability

The CVSS score of 8.8 indicates high severity, while the EPSS score of <1% shows a very low but non‑zero probability of exploitation. The flaw is not listed in CISA’s KEV catalog. According to the description, the attack vector is most likely local with kernel or root privileges, as the attacker must provoke the op cache to access improperly isolated resources. Remote exploitation is not documented in the available information.

Generated by OpenCVE AI on June 10, 2026 at 22:42 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Check for and apply the most recent Linux kernel release that incorporates the op‑cache isolation changes from the upstream maintainers.
  • Continuously monitor distribution security advisories, microcode updates, and kernel release notes for any published workarounds or recommended boot parameters that mitigate instruction corruption.
  • Enforce strict least‑privilege controls for local users to limit opportunities for a local attacker to acquire kernel privileges, and apply mandatory access control frameworks such as SELinux or AppArmor to contain potential exploitation.

Generated by OpenCVE AI on June 10, 2026 at 22:42 UTC.

Tracking

Sign in to view the affected projects.

Advisories
Source ID Title
Debian DLA Debian DLA DLA-4606-1 linux security update
Debian DLA Debian DLA DLA-4607-1 linux-6.1 security update
Debian DSA Debian DSA DSA-6306-1 linux security update
History

Wed, 10 Jun 2026 21:15:00 +0000

Type Values Removed Values Added
Weaknesses NVD-CWE-noinfo
CPEs cpe:2.3:o:linux:linux_kernel:4.14:-:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:4.14:rc2:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:4.14:rc3:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:4.14:rc4:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:4.14:rc5:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:4.14:rc6:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:4.14:rc7:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:4.14:rc8:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:7.1:rc1:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:7.1:rc2:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:7.1:rc3:*:*:*:*:*:*

Sat, 30 May 2026 11:00:00 +0000

Type Values Removed Values Added
Metrics cvssV3_1

{'score': 7.0, 'vector': 'CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H'}

 cvssV3_1

{'score': 8.8, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H'}

Fri, 29 May 2026 00:15:00 +0000

Type Values Removed Values Added
Weaknesses CWE-653
References
Metrics threat_severity

None

 cvssV3_1

{'score': 7.0, 'vector': 'CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H'}

threat_severity

Moderate

Thu, 28 May 2026 10:15:00 +0000

Type Values Removed Values Added
Description In the Linux kernel, the following vulnerability has been resolved: x86/CPU/AMD: Prevent improper isolation of shared resources in Zen2's op cache Make sure resources are not improperly shared in the op cache and cause instruction corruption this way.
Title x86/CPU/AMD: Prevent improper isolation of shared resources in Zen2's op cache
First Time appeared Linux
Linux linux Kernel
CPEs cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Vendors & Products Linux
Linux linux Kernel
References

Subscriptions

Linux Linux Kernel
cve-icon MITRE

Status: PUBLISHED

Assigner: Linux

Published:

Updated: 2026-06-14T18:00:11.496Z

Reserved: 2026-05-13T15:03:33.103Z

Link: CVE-2026-46174

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Analyzed

Published: 2026-05-28T10:16:33.020

Modified: 2026-06-10T21:08:59.583

Link: CVE-2026-46174

cve-icon Redhat

Severity : Moderate

Publid Date: 2026-05-28T00:00:00Z

Links: CVE-2026-46174 - Bugzilla

cve-icon OpenCVE Enrichment

Updated: 2026-06-10T22:45:27Z

Weaknesses