CVE-2026-46145

Summary

In the Linux kernel, the following vulnerability has been resolved:

RDMA/mana: Validate rx_hash_key_len

Sashiko points out that rx_hash_key_len comes from a uAPI structure and is blindly passed to memcpy, allowing the userspace to trash kernel memory. Bounds check it so the memcpy cannot overflow.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux0266a177631d4c6b963b5b12dd986a8c5abdbf06 < 7d7c9f0fcd19c4d2f0164347c58d49cafa961b72affected
LinuxLinux0266a177631d4c6b963b5b12dd986a8c5abdbf06 < 11c1431d641e0e4e0529e96957995820600c7287affected
LinuxLinux0266a177631d4c6b963b5b12dd986a8c5abdbf06 < 012796f9541fcd0c1fa8ae4da7eb4d83931ef838affected
LinuxLinux0266a177631d4c6b963b5b12dd986a8c5abdbf06 < 7d94f155f354b961c598f71bafa804dceded513faffected
LinuxLinux0266a177631d4c6b963b5b12dd986a8c5abdbf06 < 6dd2d4ad9c8429523b1c220c5132bd551c006425affected
LinuxLinux6.2affected
LinuxLinux0 < 6.2unaffected
LinuxLinux6.6.141 <= 6.6.*unaffected
LinuxLinux6.12.88 <= 6.12.*unaffected
LinuxLinux6.18.30 <= 6.18.*unaffected
LinuxLinux7.0.7 <= 7.0.*unaffected
LinuxLinux7.1 <= *unaffected

Weaknesses

ADP Enrichment

kernel: RDMA/mana: Validate rx_hash_key_len

Additional References

References