CVE-2026-46085

Summary

In the Linux kernel, the following vulnerability has been resolved:

rxrpc: Fix rxkad crypto unalignment handling

Fix handling of a packet with a misaligned crypto length. Also handle non-ENOMEM errors from decryption by aborting. Further, remove the WARN_ON_ONCE() so that it can't be remotely triggered (a trace line can still be emitted).

Affected Software

VendorProductVersion RangeStatus
LinuxLinux9853917f9edf08efb0b55c26d9eb8340f126d9e9 < f1c6bd0cc786a8fa74829ce3c4b3673944a308f4affected
LinuxLinuxe9c369d58785044427450350ad32d6a2497fb379 < 440d20d95e844b657a93a0b2dcc2aae155efdce6affected
LinuxLinuxbf4d6e4a6856eedeb7f66eb91224115bfff4e2cb < f0d3efd03b2a9e0f1ffa6df8fcb264af3d494286affected
LinuxLinuxf93af41b9f5f798823d0d0fb8765c2a936d76270 < af9271eb666d07b6f65612dc160a47f7cb5220edaffected
LinuxLinuxf93af41b9f5f798823d0d0fb8765c2a936d76270 < def304aae2edf321d2671fd6ca766a93c21f877eaffected
LinuxLinux5cdf57eda01a1ffaeb61ac39ec4dcc94a690431eaffected
LinuxLinux6.6.135 < 6.6.140affected
LinuxLinux6.12.82 < 6.12.86affected
LinuxLinux6.18.23 < 6.18.27affected
LinuxLinux6.19.13 < 6.20affected
LinuxLinux7.0affected
LinuxLinux0 < 7.0unaffected
LinuxLinux6.6.140 <= 6.6.*unaffected
LinuxLinux6.12.86 <= 6.12.*unaffected
LinuxLinux6.18.27 <= 6.18.*unaffected
LinuxLinux7.0.4 <= 7.0.*unaffected
LinuxLinux7.1 <= *unaffected

Weaknesses

References