CVE-2026-46053

HIGH EPSS 2.9%
Published May 27, 20261mo ago · Modified Jun 17, 20261w ago
7.8 CVSS 3.1
High
Find Similar
Published May 27, 2026 1mo ago
Last Modified Jun 17, 2026 1w ago

Description

In the Linux kernel, the following vulnerability has been resolved: net: rds: fix MR cleanup on copy error __rds_rdma_map() hands sg/pages ownership to the transport after get_mr() succeeds. If copying the generated cookie back to user space fails after that point, the error path must not free those resources again before dropping the MR reference. Remove the duplicate unpin/free from the put_user() failure branch so that MR teardown is handled only through the existing final cleanup path.

CVSS Details

Base Score
7.8
Exploitability
1.8
Impact
5.9
Vector string
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Attack Vector Local
Attack Complexity Low
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality High
Integrity High
Availability High

Threat Intelligence

EPSS Exploit Probability
2.9% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Affected Products 13

VendorProductVersionRange
linuxlinux_kernel*≥5.6.1  –  <5.10.258
linuxlinux_kernel*≥5.11  –  <5.15.209
linuxlinux_kernel*≥5.16  –  <6.1.175
linuxlinux_kernel*≥6.2  –  <6.6.140
linuxlinux_kernel*≥6.7  –  <6.12.86
linuxlinux_kernel*≥6.13  –  <6.18.27
linuxlinux_kernel*≥6.19  –  <7.0.4
linuxlinux_kernel5.6any
linuxlinux_kernel5.6any
linuxlinux_kernel5.6any
linuxlinux_kernel5.6any
linuxlinux_kernel5.6any
linuxlinux_kernel5.6any

References 8

  • git.kernel.org https://git.kernel.org/stable/c/033370ffb3c9c0264d19f8ba9ef769523266589a
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/106dc689206610cfa2098f593fdd1e020c997835
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/8141a2dc70080eda1aedc0389ed2db2b292af5bd
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/8fdbb6262a4a3ed44a0830a7793903b54bb27bdc
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/91a44b406bc1f9e1c5da0cb7d0d5991b43b79147
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/b3cb8cae530b2727d8245684148bb49425f6765c
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/d95cea9298be1ba8876e3f156be96d3a492085ca
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/ec55a86f7fba7d9111df94b9c11a4755ed492995
    Patch

Remediation

  • git.kernel.org https://git.kernel.org/stable/c/033370ffb3c9c0264d19f8ba9ef769523266589a
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/106dc689206610cfa2098f593fdd1e020c997835
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/8141a2dc70080eda1aedc0389ed2db2b292af5bd
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/8fdbb6262a4a3ed44a0830a7793903b54bb27bdc
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/91a44b406bc1f9e1c5da0cb7d0d5991b43b79147
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/b3cb8cae530b2727d8245684148bb49425f6765c
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/d95cea9298be1ba8876e3f156be96d3a492085ca
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/ec55a86f7fba7d9111df94b9c11a4755ed492995
    Patch