CVE-2026-46010

HIGH EPSS 32.2%
Published May 27, 20261mo ago · Modified Jun 17, 20261w ago
8.1 CVSS 3.1
High
Find Similar
Published May 27, 2026 1mo ago
Last Modified Jun 17, 2026 1w ago

Description

In the Linux kernel, the following vulnerability has been resolved: rxrpc: Fix error handling in rxgk_extract_token() Fix a missing bit of error handling in rxgk_extract_token(): in the event that rxgk_decrypt_skb() returns -ENOMEM, it should just return that rather than continuing on (for anything else, it generates an abort).

CVSS Details

Base Score
8.1
Exploitability
2.2
Impact
5.9
Vector string
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
Attack Vector Network
Attack Complexity High
Privileges Required None
User Interaction None
Scope Unchanged
Confidentiality High
Integrity High
Availability High

Threat Intelligence

EPSS Exploit Probability
32.2% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Affected Products 5

VendorProductVersionRange
linuxlinux_kernel*≥6.16.9  –  <6.17
linuxlinux_kernel*≥6.17.1  –  <6.18.27
linuxlinux_kernel*≥6.19  –  <7.0.4
linuxlinux_kernel6.17any
linuxlinux_kernel6.17any

References 3

  • git.kernel.org https://git.kernel.org/stable/c/293095ef618818852bac5488c1bc223935e2ca17
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/3476c8bb960f48e49355d6f93fb7673211e0163f
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/c52803e925604e2a17962ab0c99dce2d3f7238db
    Patch

Remediation

  • git.kernel.org https://git.kernel.org/stable/c/293095ef618818852bac5488c1bc223935e2ca17
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/3476c8bb960f48e49355d6f93fb7673211e0163f
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/c52803e925604e2a17962ab0c99dce2d3f7238db
    Patch