In the Linux kernel, the following vulnerability has been resolved:
fanotify: fix false positive on permission events
fsnotifygetmark_safe() may return false for a mark on an unrelated group, which results in bypassing the permission check.
Fix by skipping over detached marks that are not in the current group.
{
"osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/46xxx/CVE-2026-46150.json",
"cna_assigner": "Linux"
}