{"api_version":"1","generated_at":"2026-06-04T01:00:38+00:00","cve":"CVE-2026-46249","urls":{"html":"https://cve.report/CVE-2026-46249","api":"https://cve.report/api/cve/CVE-2026-46249.json","docs":"https://cve.report/api","cve_org":"https://www.cve.org/CVERecord?id=CVE-2026-46249","nvd":"https://nvd.nist.gov/vuln/detail/CVE-2026-46249"},"summary":{"title":"octeontx2-af: Fix PF driver crash with kexec kernel booting","description":"In the Linux kernel, the following vulnerability has been resolved:\n\nocteontx2-af: Fix PF driver crash with kexec kernel booting\n\nDuring a kexec reboot the hardware is not power-cycled, so AF state from\nthe old kernel can persist into the new kernel. When AF and PF drivers\nare built as modules, the PF driver may probe before AF reinitializes\nthe hardware.\n\nThe PF driver treats the RVUM block revision as an indication that AF\ninitialization is complete. If this value is left uncleared at shutdown,\nPF may incorrectly assume AF is ready and access stale hardware state,\nleading to a crash.\n\nClear the RVUM block revision during AF shutdown to avoid PF\nmis-detecting AF readiness after kexec.","state":"PUBLISHED","assigner":"Linux","published_at":"2026-06-03 18:16:25","updated_at":"2026-06-03 18:16:25"},"problem_types":[],"metrics":[],"references":[{"url":"https://git.kernel.org/stable/c/57821d1436ba1c6a6973aa32d54166fdec35558c","name":"https://git.kernel.org/stable/c/57821d1436ba1c6a6973aa32d54166fdec35558c","refsource":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":[],"title":"","mime":"","httpstatus":"","archivestatus":"0"},{"url":"https://git.kernel.org/stable/c/1370736836a18b5e0cd74bcc9cffe11d21f1fe79","name":"https://git.kernel.org/stable/c/1370736836a18b5e0cd74bcc9cffe11d21f1fe79","refsource":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":[],"title":"","mime":"","httpstatus":"","archivestatus":"0"},{"url":"https://git.kernel.org/stable/c/b7605b9301abc18fbbf2b0e23fdd281fc768955d","name":"https://git.kernel.org/stable/c/b7605b9301abc18fbbf2b0e23fdd281fc768955d","refsource":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":[],"title":"","mime":"","httpstatus":"","archivestatus":"0"},{"url":"https://git.kernel.org/stable/c/8b5ed7c5417b7013d35b6f2507dab739013ba1a9","name":"https://git.kernel.org/stable/c/8b5ed7c5417b7013d35b6f2507dab739013ba1a9","refsource":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":[],"title":"","mime":"","httpstatus":"","archivestatus":"0"},{"url":"https://git.kernel.org/stable/c/2d2d574309e3ae84ee794869a5da8b4c38753a94","name":"https://git.kernel.org/stable/c/2d2d574309e3ae84ee794869a5da8b4c38753a94","refsource":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":[],"title":"","mime":"","httpstatus":"","archivestatus":"0"},{"url":"https://git.kernel.org/stable/c/9c3398e5b3a914b74276d44ab54c49123b89c61a","name":"https://git.kernel.org/stable/c/9c3398e5b3a914b74276d44ab54c49123b89c61a","refsource":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":[],"title":"","mime":"","httpstatus":"","archivestatus":"0"},{"url":"https://git.kernel.org/stable/c/9769a09afda20a006b528b9e723effcae45965b2","name":"https://git.kernel.org/stable/c/9769a09afda20a006b528b9e723effcae45965b2","refsource":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":[],"title":"","mime":"","httpstatus":"","archivestatus":"0"},{"url":"https://git.kernel.org/stable/c/7d56ba306e93d04696718963fb4cda2883ee7585","name":"https://git.kernel.org/stable/c/7d56ba306e93d04696718963fb4cda2883ee7585","refsource":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","tags":[],"title":"","mime":"","httpstatus":"","archivestatus":"0"},{"url":"https://www.cve.org/CVERecord?id=CVE-2026-46249","name":"CVE Program record","refsource":"CVE.ORG","tags":["canonical"]},{"url":"https://nvd.nist.gov/vuln/detail/CVE-2026-46249","name":"NVD vulnerability detail","refsource":"NVD","tags":["canonical","analysis"]}],"affected":[{"source":"CNA","vendor":"Linux","product":"Linux","version":"affected 54494aa5d1e68945dc79feb7c8461cd382e11d8a b7605b9301abc18fbbf2b0e23fdd281fc768955d git","platforms":[]},{"source":"CNA","vendor":"Linux","product":"Linux","version":"affected 54494aa5d1e68945dc79feb7c8461cd382e11d8a 9769a09afda20a006b528b9e723effcae45965b2 git","platforms":[]},{"source":"CNA","vendor":"Linux","product":"Linux","version":"affected 54494aa5d1e68945dc79feb7c8461cd382e11d8a 57821d1436ba1c6a6973aa32d54166fdec35558c git","platforms":[]},{"source":"CNA","vendor":"Linux","product":"Linux","version":"affected 54494aa5d1e68945dc79feb7c8461cd382e11d8a 8b5ed7c5417b7013d35b6f2507dab739013ba1a9 git","platforms":[]},{"source":"CNA","vendor":"Linux","product":"Linux","version":"affected 54494aa5d1e68945dc79feb7c8461cd382e11d8a 7d56ba306e93d04696718963fb4cda2883ee7585 git","platforms":[]},{"source":"CNA","vendor":"Linux","product":"Linux","version":"affected 54494aa5d1e68945dc79feb7c8461cd382e11d8a 9c3398e5b3a914b74276d44ab54c49123b89c61a git","platforms":[]},{"source":"CNA","vendor":"Linux","product":"Linux","version":"affected 54494aa5d1e68945dc79feb7c8461cd382e11d8a 1370736836a18b5e0cd74bcc9cffe11d21f1fe79 git","platforms":[]},{"source":"CNA","vendor":"Linux","product":"Linux","version":"affected 54494aa5d1e68945dc79feb7c8461cd382e11d8a 2d2d574309e3ae84ee794869a5da8b4c38753a94 git","platforms":[]},{"source":"CNA","vendor":"Linux","product":"Linux","version":"affected 4.20","platforms":[]},{"source":"CNA","vendor":"Linux","product":"Linux","version":"unaffected 4.20 semver","platforms":[]},{"source":"CNA","vendor":"Linux","product":"Linux","version":"unaffected 5.10.252 5.10.* semver","platforms":[]},{"source":"CNA","vendor":"Linux","product":"Linux","version":"unaffected 5.15.202 5.15.* semver","platforms":[]},{"source":"CNA","vendor":"Linux","product":"Linux","version":"unaffected 6.1.165 6.1.* semver","platforms":[]},{"source":"CNA","vendor":"Linux","product":"Linux","version":"unaffected 6.6.128 6.6.* semver","platforms":[]},{"source":"CNA","vendor":"Linux","product":"Linux","version":"unaffected 6.12.75 6.12.* semver","platforms":[]},{"source":"CNA","vendor":"Linux","product":"Linux","version":"unaffected 6.18.14 6.18.* semver","platforms":[]},{"source":"CNA","vendor":"Linux","product":"Linux","version":"unaffected 6.19.4 6.19.* semver","platforms":[]},{"source":"CNA","vendor":"Linux","product":"Linux","version":"unaffected 7.0 * original_commit_for_fix","platforms":[]}],"timeline":[],"solutions":[],"workarounds":[],"exploits":[],"credits":[],"nvd_cpes":[],"vendor_comments":[],"enrichments":{"kev":null,"epss":null,"legacy_qids":[]},"source_records":{"cve_program":{"containers":{"cna":{"affected":[{"defaultStatus":"unaffected","product":"Linux","programFiles":["drivers/net/ethernet/marvell/octeontx2/af/rvu.c"],"repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","vendor":"Linux","versions":[{"lessThan":"b7605b9301abc18fbbf2b0e23fdd281fc768955d","status":"affected","version":"54494aa5d1e68945dc79feb7c8461cd382e11d8a","versionType":"git"},{"lessThan":"9769a09afda20a006b528b9e723effcae45965b2","status":"affected","version":"54494aa5d1e68945dc79feb7c8461cd382e11d8a","versionType":"git"},{"lessThan":"57821d1436ba1c6a6973aa32d54166fdec35558c","status":"affected","version":"54494aa5d1e68945dc79feb7c8461cd382e11d8a","versionType":"git"},{"lessThan":"8b5ed7c5417b7013d35b6f2507dab739013ba1a9","status":"affected","version":"54494aa5d1e68945dc79feb7c8461cd382e11d8a","versionType":"git"},{"lessThan":"7d56ba306e93d04696718963fb4cda2883ee7585","status":"affected","version":"54494aa5d1e68945dc79feb7c8461cd382e11d8a","versionType":"git"},{"lessThan":"9c3398e5b3a914b74276d44ab54c49123b89c61a","status":"affected","version":"54494aa5d1e68945dc79feb7c8461cd382e11d8a","versionType":"git"},{"lessThan":"1370736836a18b5e0cd74bcc9cffe11d21f1fe79","status":"affected","version":"54494aa5d1e68945dc79feb7c8461cd382e11d8a","versionType":"git"},{"lessThan":"2d2d574309e3ae84ee794869a5da8b4c38753a94","status":"affected","version":"54494aa5d1e68945dc79feb7c8461cd382e11d8a","versionType":"git"}]},{"defaultStatus":"affected","product":"Linux","programFiles":["drivers/net/ethernet/marvell/octeontx2/af/rvu.c"],"repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","vendor":"Linux","versions":[{"status":"affected","version":"4.20"},{"lessThan":"4.20","status":"unaffected","version":"0","versionType":"semver"},{"lessThanOrEqual":"5.10.*","status":"unaffected","version":"5.10.252","versionType":"semver"},{"lessThanOrEqual":"5.15.*","status":"unaffected","version":"5.15.202","versionType":"semver"},{"lessThanOrEqual":"6.1.*","status":"unaffected","version":"6.1.165","versionType":"semver"},{"lessThanOrEqual":"6.6.*","status":"unaffected","version":"6.6.128","versionType":"semver"},{"lessThanOrEqual":"6.12.*","status":"unaffected","version":"6.12.75","versionType":"semver"},{"lessThanOrEqual":"6.18.*","status":"unaffected","version":"6.18.14","versionType":"semver"},{"lessThanOrEqual":"6.19.*","status":"unaffected","version":"6.19.4","versionType":"semver"},{"lessThanOrEqual":"*","status":"unaffected","version":"7.0","versionType":"original_commit_for_fix"}]}],"cpeApplicability":[{"nodes":[{"cpeMatch":[{"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionEndExcluding":"5.10.252","versionStartIncluding":"4.20","vulnerable":true},{"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionEndExcluding":"5.15.202","versionStartIncluding":"4.20","vulnerable":true},{"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionEndExcluding":"6.1.165","versionStartIncluding":"4.20","vulnerable":true},{"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionEndExcluding":"6.6.128","versionStartIncluding":"4.20","vulnerable":true},{"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionEndExcluding":"6.12.75","versionStartIncluding":"4.20","vulnerable":true},{"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionEndExcluding":"6.18.14","versionStartIncluding":"4.20","vulnerable":true},{"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionEndExcluding":"6.19.4","versionStartIncluding":"4.20","vulnerable":true},{"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionEndExcluding":"7.0","versionStartIncluding":"4.20","vulnerable":true}],"negate":false,"operator":"OR"}]}],"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nocteontx2-af: Fix PF driver crash with kexec kernel booting\n\nDuring a kexec reboot the hardware is not power-cycled, so AF state from\nthe old kernel can persist into the new kernel. When AF and PF drivers\nare built as modules, the PF driver may probe before AF reinitializes\nthe hardware.\n\nThe PF driver treats the RVUM block revision as an indication that AF\ninitialization is complete. If this value is left uncleared at shutdown,\nPF may incorrectly assume AF is ready and access stale hardware state,\nleading to a crash.\n\nClear the RVUM block revision during AF shutdown to avoid PF\nmis-detecting AF readiness after kexec."}],"providerMetadata":{"dateUpdated":"2026-06-03T15:49:45.252Z","orgId":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","shortName":"Linux"},"references":[{"url":"https://git.kernel.org/stable/c/b7605b9301abc18fbbf2b0e23fdd281fc768955d"},{"url":"https://git.kernel.org/stable/c/9769a09afda20a006b528b9e723effcae45965b2"},{"url":"https://git.kernel.org/stable/c/57821d1436ba1c6a6973aa32d54166fdec35558c"},{"url":"https://git.kernel.org/stable/c/8b5ed7c5417b7013d35b6f2507dab739013ba1a9"},{"url":"https://git.kernel.org/stable/c/7d56ba306e93d04696718963fb4cda2883ee7585"},{"url":"https://git.kernel.org/stable/c/9c3398e5b3a914b74276d44ab54c49123b89c61a"},{"url":"https://git.kernel.org/stable/c/1370736836a18b5e0cd74bcc9cffe11d21f1fe79"},{"url":"https://git.kernel.org/stable/c/2d2d574309e3ae84ee794869a5da8b4c38753a94"}],"title":"octeontx2-af: Fix PF driver crash with kexec kernel booting","x_generator":{"engine":"bippy-1.2.0"}}},"cveMetadata":{"assignerOrgId":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","assignerShortName":"Linux","cveId":"CVE-2026-46249","datePublished":"2026-06-03T15:49:45.252Z","dateReserved":"2026-05-13T15:03:33.107Z","dateUpdated":"2026-06-03T15:49:45.252Z","state":"PUBLISHED"},"dataType":"CVE_RECORD","dataVersion":"5.2"},"nvd":{"publishedDate":"2026-06-03 18:16:25","lastModifiedDate":"2026-06-03 18:16:25","problem_types":[],"metrics":[],"configurations":[]},"legacy_mitre":{"record":{"CveYear":"2026","CveId":"46249","Ordinal":"1","Title":"octeontx2-af: Fix PF driver crash with kexec kernel booting","CVE":"CVE-2026-46249","Year":"2026"},"notes":[{"CveYear":"2026","CveId":"46249","Ordinal":"1","NoteData":"In the Linux kernel, the following vulnerability has been resolved:\n\nocteontx2-af: Fix PF driver crash with kexec kernel booting\n\nDuring a kexec reboot the hardware is not power-cycled, so AF state from\nthe old kernel can persist into the new kernel. When AF and PF drivers\nare built as modules, the PF driver may probe before AF reinitializes\nthe hardware.\n\nThe PF driver treats the RVUM block revision as an indication that AF\ninitialization is complete. If this value is left uncleared at shutdown,\nPF may incorrectly assume AF is ready and access stale hardware state,\nleading to a crash.\n\nClear the RVUM block revision during AF shutdown to avoid PF\nmis-detecting AF readiness after kexec.","Type":"Description","Title":"octeontx2-af: Fix PF driver crash with kexec kernel booting"}]}}}