CVE-2026-46085

{"id": "CVE-2026-46085", "cveTags": [], "metrics": {"cvssMetricV31": [{"type": "Secondary", "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.5, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "NONE"}, "impactScore": 3.6, "exploitabilityScore": 3.9}]}, "published": "2026-05-27T14:17:29.963", "references": [{"url": "https://git.kernel.org/stable/c/440d20d95e844b657a93a0b2dcc2aae155efdce6", "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67"}, {"url": "https://git.kernel.org/stable/c/af9271eb666d07b6f65612dc160a47f7cb5220ed", "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67"}, {"url": "https://git.kernel.org/stable/c/def304aae2edf321d2671fd6ca766a93c21f877e", "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67"}, {"url": "https://git.kernel.org/stable/c/f0d3efd03b2a9e0f1ffa6df8fcb264af3d494286", "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67"}, {"url": "https://git.kernel.org/stable/c/f1c6bd0cc786a8fa74829ce3c4b3673944a308f4", "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67"}], "vulnStatus": "Awaiting Analysis", "descriptions": [{"lang": "en", "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nrxrpc: Fix rxkad crypto unalignment handling\n\nFix handling of a packet with a misaligned crypto length. Also handle\nnon-ENOMEM errors from decryption by aborting. Further, remove the\nWARN_ON_ONCE() so that it can't be remotely triggered (a trace line can\nstill be emitted)."}], "lastModified": "2026-05-30T11:17:20.693", "sourceIdentifier": "416baaa9-dc9f-4396-8d5f-8c081fb06d67"}