CVE-2026-46299 | Linux Kernel up to 6.6.139/6.12.87/6.18.29/7.0.6 hfsplus hfsplus_fill_super max_unistr_len stack-based overflow

A vulnerability was found in Linux Kernel up to 6.6.139/6.12.87/6.18.29/7.0.6. It has been declared as critical. Impacted is the function hfsplus_fill_super of the component hfsplus. Such manipulation of the argument max_unistr_len leads to stack-based buffer overflow.

This vulnerability is uniquely identified as CVE-2026-46299. The attack can only be initiated within the local network. No exploit exists.

It is recommended to upgrade the affected component.VulDB Recent EntriesRead More