CVE-2026-46019

MEDIUM EPSS 5.9%
Published May 27, 20261mo ago · Modified Jun 17, 20261w ago
5.5 CVSS 3.1
Medium
Find Similar
Published May 27, 2026 1mo ago
Last Modified Jun 17, 2026 1w ago

Description

In the Linux kernel, the following vulnerability has been resolved: crypto: atmel-aes - Fix 3-page memory leak in atmel_aes_buff_cleanup atmel_aes_buff_init() allocates 4 pages using __get_free_pages() with ATMEL_AES_BUFFER_ORDER, but atmel_aes_buff_cleanup() frees only the first page using free_page(), leaking the remaining 3 pages. Use free_pages() with ATMEL_AES_BUFFER_ORDER to fix the memory leak.

CVSS Details

Base Score
5.5
Exploitability
1.8
Impact
3.6
Vector string
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Attack Vector Local
Attack Complexity Low
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality None
Integrity None
Availability High

Threat Intelligence

EPSS Exploit Probability
5.9% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Weaknesses 1

CWE-401

Affected Products 7

VendorProductVersionRange
linuxlinux_kernel*≥4.5  –  <5.10.258
linuxlinux_kernel*≥5.11  –  <5.15.209
linuxlinux_kernel*≥5.16  –  <6.1.175
linuxlinux_kernel*≥6.2  –  <6.6.140
linuxlinux_kernel*≥6.7  –  <6.12.86
linuxlinux_kernel*≥6.13  –  <6.18.27
linuxlinux_kernel*≥6.19  –  <7.0.4

References 8

  • git.kernel.org https://git.kernel.org/stable/c/03e00aafa5f747d07811589e8d5fee638245431b
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/230ad8a78fe67266b1ba4685da1abdd61471c5b8
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/3fcfff4ed35f963380a68741bcd52742baff7f76
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/5ad40cde96d603a88d68f8ed59f6d36407ab1f3c
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/61516b4a5b2647dc3f8f67b5dffaf038be997511
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/65b3589d39d05699c3850202f8333e5361033ea3
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/b63f1e2f0e319ad3fe4a58eb3db4fd50cc98baca
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/de6952e0af2acbada900d742437e848285c01d11
    Patch

Remediation

  • git.kernel.org https://git.kernel.org/stable/c/03e00aafa5f747d07811589e8d5fee638245431b
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/230ad8a78fe67266b1ba4685da1abdd61471c5b8
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/3fcfff4ed35f963380a68741bcd52742baff7f76
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/5ad40cde96d603a88d68f8ed59f6d36407ab1f3c
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/61516b4a5b2647dc3f8f67b5dffaf038be997511
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/65b3589d39d05699c3850202f8333e5361033ea3
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/b63f1e2f0e319ad3fe4a58eb3db4fd50cc98baca
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/de6952e0af2acbada900d742437e848285c01d11
    Patch