CVE-2026-46085
Published: May 27, 2026
Modified: May 30, 2026
CVSS v3.1
7.5
Description
In the Linux kernel, the following vulnerability has been resolved: rxrpc: Fix rxkad crypto unalignment handling Fix handling of a packet with a misaligned crypto length. Also handle non-ENOMEM errors from decryption by aborting. Further, remove the WARN_ON_ONCE() so that it can't be remotely triggered (a trace line can still be emitted).
| Vendor | Product | Versions |
|---|---|---|
Linux | Linux | affected 9853917f9edf08efb0b55c26d9eb8340f126d9e9 - < f1c6bd0cc786a8fa74829ce3c4b3673944a308f4affected e9c369d58785044427450350ad32d6a2497fb379 - < 440d20d95e844b657a93a0b2dcc2aae155efdce6affected bf4d6e4a6856eedeb7f66eb91224115bfff4e2cb - < f0d3efd03b2a9e0f1ffa6df8fcb264af3d494286affected f93af41b9f5f798823d0d0fb8765c2a936d76270 - < af9271eb666d07b6f65612dc160a47f7cb5220edaffected f93af41b9f5f798823d0d0fb8765c2a936d76270 - < def304aae2edf321d2671fd6ca766a93c21f877e+5 more versions |
Linux | Linux | affected 7.0unaffected 0 - < 7.0unaffected 6.6.140 - <= 6.6.*unaffected 6.12.86 - <= 6.12.*unaffected 6.18.27 - <= 6.18.*+2 more versions |
CVSS v3.1 Details
CVSS v3.1 Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now