Description
In the Linux kernel, the following vulnerability has been resolved:

erofs: handle end of filesystem properly for file-backed mounts

I/O requests beyond the end of the filesystem should be zeroed out,
similar to loopback devices and that is what we expect.
Published: 2026-06-09
Score: 5.5 Medium
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

The Linux kernel EROFS driver allows I/O requests that exceed the logical size of a file-backed mount to return data from the underlying backing file instead of zero‑filling as expected. This unintended read can expose data that does not belong to the mounted image, potentially revealing confidential information to a user capable of performing such reads.

Affected Systems

All Linux kernels that incorporate the EROFS filesystem driver and have not yet integrated the patch that zero‑fills out‑of‑bounds reads are affected. The advisory lists the relevant commits but does not pin a specific kernel version, so any release prior to those commits may remain vulnerable.

Risk and Exploitability

The CVSS score of 5.5 indicates moderate severity. No EPSS score is available, and the vulnerability is not listed in CISA's KEV catalogue. Based on the description, an attacker with the ability to read beyond the end of a file on a mounted EROFS image—typically a local user or process with access to that filesystem—could trigger the out‑of‑bounds read and gain access to data from the backing file. The risk is therefore moderate for attackers, and the impact is the disclosure of data that should otherwise be inaccessible.

Generated by OpenCVE AI on June 10, 2026 at 03:22 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade the Linux kernel to a version that includes the EROFS zero‑fill fix referenced in the advisory.
  • Reboot the system or reload the kernel to activate the patched driver.
  • If a kernel upgrade cannot be performed immediately, avoid issuing read operations that cross the boundary of any file‑backed EROFS image and consider storing sensitive data on a different filesystem.

Generated by OpenCVE AI on June 10, 2026 at 03:22 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Wed, 10 Jun 2026 02:30:00 +0000

Type Values Removed Values Added
Weaknesses CWE-20
CWE-200

Wed, 10 Jun 2026 00:15:00 +0000

Type Values Removed Values Added
Weaknesses CWE-125
References
Metrics threat_severity

None

 cvssV3_1

{'score': 5.5, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H'}

threat_severity

Moderate

Tue, 09 Jun 2026 15:15:00 +0000

Type Values Removed Values Added
Weaknesses CWE-20
CWE-200

Tue, 09 Jun 2026 13:30:00 +0000

Type Values Removed Values Added
Description In the Linux kernel, the following vulnerability has been resolved: erofs: handle end of filesystem properly for file-backed mounts I/O requests beyond the end of the filesystem should be zeroed out, similar to loopback devices and that is what we expect.
Title erofs: handle end of filesystem properly for file-backed mounts
First Time appeared Linux
Linux linux Kernel
CPEs cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Vendors & Products Linux
Linux linux Kernel
References

Subscriptions

Linux Linux Kernel
cve-icon MITRE

Status: PUBLISHED

Assigner: Linux

Published:

Updated: 2026-06-09T12:25:58.520Z

Reserved: 2026-05-13T15:03:33.112Z

Link: CVE-2026-46329

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Received

Published: 2026-06-09T14:16:42.620

Modified: 2026-06-09T14:16:42.620

Link: CVE-2026-46329

cve-icon Redhat

Severity : Moderate

Publid Date: 2026-06-09T00:00:00Z

Links: CVE-2026-46329 - Bugzilla

cve-icon OpenCVE Enrichment

Updated: 2026-06-10T03:30:16Z

Weaknesses