Profiling/Debugging Limitations Following Security Update (CVE-2026-46333)

Dear Users,

we regret to inform you that, following the security vulnerability CVE-2026-46333 (released on May 15, 2026), which allows root privilege escalation by exploiting a flaw in the ptrace mechanism, a mitigation has been applied by tightening ptrace permissions.

In particular, the kernel parameter ptrace_scope has been increased from 0 (no restrictions) to 2 (only processes with administrative privileges can use ptrace).

This change, while necessary for security reasons, significantly restricts the use of ptrace. As a consequence, tools that rely on it, primarily profilers and debuggers, may fail to operate correctly.

To keep you informed, we have introduced a “Known Issues” section for the LEONARDO and G100 cluster-specific documentation (similar to the one already available for PITAGORA). These sections describe the issue, along with available workarounds and status updates.

If you have identified additional workarounds related to this topic, or if you believe there are other open issues that could benefit many users, please do not hesitate to contact our User Support Team at [email protected].

Best regards,
HPC User Support @ CINECA