CVE-2026-46068

Summary

In the Linux kernel, the following vulnerability has been resolved:

crypto: nx - fix bounce buffer leaks in nx842_crypto_{alloc,free}_ctx

The bounce buffers are allocated with __get_free_pages() using BOUNCE_BUFFER_ORDER (order 2 = 4 pages), but both the allocation error path and nx842_crypto_free_ctx() release the buffers with free_page(). Use free_pages() with the matching order instead.

Affected Software

VendorProductVersion RangeStatus
LinuxLinuxed70b479c2c0b6e1319f0cb2de19f1051be219a4 < f17a4850d1ce7c11cba8b1830b9bfedfede878bbaffected
LinuxLinuxed70b479c2c0b6e1319f0cb2de19f1051be219a4 < 910bb34b801d39794e656f7d48414844b2bd354eaffected
LinuxLinuxed70b479c2c0b6e1319f0cb2de19f1051be219a4 < 5c07962fed66e1238fad7635fa150570bd38b4c5affected
LinuxLinuxed70b479c2c0b6e1319f0cb2de19f1051be219a4 < 80fd99d7c30ea889662d21f1b44d8fea4c83138daffected
LinuxLinuxed70b479c2c0b6e1319f0cb2de19f1051be219a4 < adb3faf2db1a66d0f015b44ac909a32dfc7f2f9caffected
LinuxLinux4.2affected
LinuxLinux0 < 4.2unaffected
LinuxLinux6.6.141 <= 6.6.*unaffected
LinuxLinux6.12.88 <= 6.12.*unaffected
LinuxLinux6.18.27 <= 6.18.*unaffected
LinuxLinux7.0.4 <= 7.0.*unaffected
LinuxLinux7.1 <= *unaffected

Weaknesses

References