rxrpc: Fix rxkad crypto unalignment handling
Summary
| CVE | CVE-2026-46085 |
|---|---|
| State | PUBLISHED |
| Assigner | Linux |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2026-05-27 14:17:29 UTC |
| Updated | 2026-05-30 11:17:20 UTC |
| Description | In the Linux kernel, the following vulnerability has been resolved: rxrpc: Fix rxkad crypto unalignment handling Fix handling of a packet with a misaligned crypto length. Also handle non-ENOMEM errors from decryption by aborting. Further, remove the WARN_ON_ONCE() so that it can't be remotely triggered (a trace line can still be emitted). |
Risk And Classification
Primary CVSS: v3.1 7.5 HIGH from 416baaa9-dc9f-4396-8d5f-8c081fb06d67
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
EPSS: 0.000580000 probability, percentile 0.185180000 (date 2026-06-03)
| Version | Source | Type | Score | Severity | Vector |
|---|---|---|---|---|---|
| 3.1 | 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | Secondary | 7.5 | HIGH | CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H |
| 3.1 | CNA | DECLARED | 7.5 | HIGH | CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H |
CVSS v3.1 Breakdown
Attack Vector
NetworkAttack Complexity
LowPrivileges Required
NoneUser Interaction
NoneScope
UnchangedConfidentiality
NoneIntegrity
NoneAvailability
HighCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Vendor Declared Affected Products
| Source | Vendor | Product | Version | Platforms |
|---|---|---|---|---|
| CNA | Linux | Linux | affected 9853917f9edf08efb0b55c26d9eb8340f126d9e9 f1c6bd0cc786a8fa74829ce3c4b3673944a308f4 git | Not specified |
| CNA | Linux | Linux | affected e9c369d58785044427450350ad32d6a2497fb379 440d20d95e844b657a93a0b2dcc2aae155efdce6 git | Not specified |
| CNA | Linux | Linux | affected bf4d6e4a6856eedeb7f66eb91224115bfff4e2cb f0d3efd03b2a9e0f1ffa6df8fcb264af3d494286 git | Not specified |
| CNA | Linux | Linux | affected f93af41b9f5f798823d0d0fb8765c2a936d76270 af9271eb666d07b6f65612dc160a47f7cb5220ed git | Not specified |
| CNA | Linux | Linux | affected f93af41b9f5f798823d0d0fb8765c2a936d76270 def304aae2edf321d2671fd6ca766a93c21f877e git | Not specified |
| CNA | Linux | Linux | affected 5cdf57eda01a1ffaeb61ac39ec4dcc94a690431e git | Not specified |
| CNA | Linux | Linux | affected 6.6.135 6.6.140 semver | Not specified |
| CNA | Linux | Linux | affected 6.12.82 6.12.86 semver | Not specified |
| CNA | Linux | Linux | affected 6.18.23 6.18.27 semver | Not specified |
| CNA | Linux | Linux | affected 6.19.13 6.20 semver | Not specified |
| CNA | Linux | Linux | affected 7.0 | Not specified |
| CNA | Linux | Linux | unaffected 7.0 semver | Not specified |
| CNA | Linux | Linux | unaffected 6.6.140 6.6.* semver | Not specified |
| CNA | Linux | Linux | unaffected 6.12.86 6.12.* semver | Not specified |
| CNA | Linux | Linux | unaffected 6.18.27 6.18.* semver | Not specified |
| CNA | Linux | Linux | unaffected 7.0.4 7.0.* semver | Not specified |
| CNA | Linux | Linux | unaffected 7.1-rc1 * original_commit_for_fix | Not specified |
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| git.kernel.org/stable/c/af9271eb666d07b6f65612dc160a47f7cb5220ed | 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | git.kernel.org | |
| git.kernel.org/stable/c/f0d3efd03b2a9e0f1ffa6df8fcb264af3d494286 | 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | git.kernel.org | |
| git.kernel.org/stable/c/f1c6bd0cc786a8fa74829ce3c4b3673944a308f4 | 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | git.kernel.org | |
| git.kernel.org/stable/c/440d20d95e844b657a93a0b2dcc2aae155efdce6 | 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | git.kernel.org | |
| git.kernel.org/stable/c/def304aae2edf321d2671fd6ca766a93c21f877e | 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | git.kernel.org | |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
No vendor comments have been submitted for this CVE.
There are currently no legacy QID mappings associated with this CVE.