CVE-2026-46085

HIGH

rxrpc: Fix rxkad crypto unalignment handling

Title source: cna
STIX 2.1

Description

In the Linux kernel, the following vulnerability has been resolved: rxrpc: Fix rxkad crypto unalignment handling Fix handling of a packet with a misaligned crypto length. Also handle non-ENOMEM errors from decryption by aborting. Further, remove the WARN_ON_ONCE() so that it can't be remotely triggered (a trace line can still be emitted).

Scores

CVSS v3 7.5
EPSS 0.0044
EPSS Percentile 35.5%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Details

Status published
Products (24)
linux/Kernel < 6.6.140linux
linux/Kernel 6.13.0 - 6.18.27linux
linux/Kernel 6.19.0 - 7.0.4linux
linux/Kernel 6.7.0 - 6.12.86linux
Linux/Linux < 7.0
Linux/Linux 5cdf57eda01a1ffaeb61ac39ec4dcc94a690431e
Linux/Linux 6.12.82 - 6.12.86
Linux/Linux 6.12.86 - 6.12.*
Linux/Linux 6.18.23 - 6.18.27
Linux/Linux 6.18.27 - 6.18.*
... and 14 more
Published May 27, 2026
Tracked Since May 27, 2026