CVE-2026-46281

In the Linux kernel, the following vulnerability has been resolved:<br /> <br /> vmalloc: fix buffer overflow in vrealloc_node_align()<br /> <br /> Commit 4c5d3365882d ("mm/vmalloc: allow to set node and align in<br /> vrealloc") added the ability to force a new allocation if the current<br /> pointer is on the wrong NUMA node, or if an alignment constraint is not<br /> met, even if the user is shrinking the allocation.<br /> <br /> On this path (need_realloc), the code allocates a new object of &amp;#39;size&amp;#39;<br /> bytes and then memcpy()s &amp;#39;old_size&amp;#39; bytes into it. If the request is to<br /> shrink the object (size