CVE-2026-46145
7.8
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Summary
In the Linux kernel, the following vulnerability has been resolved:
RDMA/mana: Validate rx_hash_key_len
Sashiko points out that rx_hash_key_len comes from a uAPI structure and is blindly passed to memcpy, allowing the userspace to trash kernel memory. Bounds check it so the memcpy cannot overflow.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Linux | Linux | 0266a177631d4c6b963b5b12dd986a8c5abdbf06 < 7d7c9f0fcd19c4d2f0164347c58d49cafa961b72 | affected |
| Linux | Linux | 0266a177631d4c6b963b5b12dd986a8c5abdbf06 < 11c1431d641e0e4e0529e96957995820600c7287 | affected |
| Linux | Linux | 0266a177631d4c6b963b5b12dd986a8c5abdbf06 < 012796f9541fcd0c1fa8ae4da7eb4d83931ef838 | affected |
| Linux | Linux | 0266a177631d4c6b963b5b12dd986a8c5abdbf06 < 7d94f155f354b961c598f71bafa804dceded513f | affected |
| Linux | Linux | 0266a177631d4c6b963b5b12dd986a8c5abdbf06 < 6dd2d4ad9c8429523b1c220c5132bd551c006425 | affected |
| Linux | Linux | 6.2 | affected |
| Linux | Linux | 0 < 6.2 | unaffected |
| Linux | Linux | 6.6.141 <= 6.6.* | unaffected |
| Linux | Linux | 6.12.88 <= 6.12.* | unaffected |
| Linux | Linux | 6.18.30 <= 6.18.* | unaffected |
| Linux | Linux | 7.0.7 <= 7.0.* | unaffected |
| Linux | Linux | 7.1 <= * | unaffected |
Weaknesses
ADP Enrichment
kernel: RDMA/mana: Validate rx_hash_key_len
Additional References
- https://access.redhat.com/security/cve/CVE-2026-46145
- https://bugzilla.redhat.com/show_bug.cgi?id=2482581
- https://security.access.redhat.com/data/csaf/v2/vex/2026/cve-2026-46145.json
- https://access.redhat.com/errata/RHSA-2026:30129
- https://access.redhat.com/errata/RHSA-2026:27789
- https://access.redhat.com/errata/RHSA-2026:27353
- https://access.redhat.com/errata/RHSA-2026:27354
References
- https://git.kernel.org/stable/c/7d7c9f0fcd19c4d2f0164347c58d49cafa961b72
- https://git.kernel.org/stable/c/11c1431d641e0e4e0529e96957995820600c7287
- https://git.kernel.org/stable/c/012796f9541fcd0c1fa8ae4da7eb4d83931ef838
- https://git.kernel.org/stable/c/7d94f155f354b961c598f71bafa804dceded513f
- https://git.kernel.org/stable/c/6dd2d4ad9c8429523b1c220c5132bd551c006425
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.