CVE-2026-46053
Published: May 27, 2026
Modified: Jun 1, 2026
CVSS v3.1
7.8
Description
In the Linux kernel, the following vulnerability has been resolved: net: rds: fix MR cleanup on copy error __rds_rdma_map() hands sg/pages ownership to the transport after get_mr() succeeds. If copying the generated cookie back to user space fails after that point, the error path must not free those resources again before dropping the MR reference. Remove the duplicate unpin/free from the put_user() failure branch so that MR teardown is handled only through the existing final cleanup path.
| Vendor | Product | Versions |
|---|---|---|
Linux | Linux | affected 0d4597c8c5abdeeaf50774066c16683f30184dc8 - < 91a44b406bc1f9e1c5da0cb7d0d5991b43b79147affected 0d4597c8c5abdeeaf50774066c16683f30184dc8 - < 106dc689206610cfa2098f593fdd1e020c997835affected 0d4597c8c5abdeeaf50774066c16683f30184dc8 - < ec55a86f7fba7d9111df94b9c11a4755ed492995affected 0d4597c8c5abdeeaf50774066c16683f30184dc8 - < 8fdbb6262a4a3ed44a0830a7793903b54bb27bdcaffected 0d4597c8c5abdeeaf50774066c16683f30184dc8 - < d95cea9298be1ba8876e3f156be96d3a492085ca+3 more versions |
Linux | Linux | affected 5.6unaffected 0 - < 5.6unaffected 5.10.258 - <= 5.10.*unaffected 5.15.209 - <= 5.15.*unaffected 6.1.175 - <= 6.1.*+5 more versions |
CVSS v3.1 Details
CVSS v3.1 Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now