CVE-2026-2100 | THREATINT

Description

A flaw was found in p11-kit. A remote attacker could exploit this vulnerability by calling the C_DeriveKey function on a remote token with specific IBM kyber or IBM btc derive mechanism parameters set to NULL. This could lead to the RPC-client attempting to return an uninitialized value, potentially resulting in a NULL dereference or undefined behavior. This issue may cause an application level denial of service or other unpredictable system states.

PUBLISHED Reserved 2026-02-06 | Published 2026-03-26 | Updated 2026-06-02 | Assigner redhat

MEDIUM: 5.3CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Problem types

Access of Uninitialized Pointer

Product status

Default status

affected

0:0.26.2-1.el10 (rpm) before *

unaffected

Default status

affected

0:0.26.2-1.el9 (rpm) before *

unaffected

Default status

affected

0:0.26.2-1.el9 (rpm) before *

unaffected

Default status

affected

0.26.2-1.1.hum1 (rpm) before *

unaffected

Default status

affected

1780420428 (rpm) before *

unaffected

Default status

affected

1779798159 (rpm) before *

unaffected

Default status

affected

1779798164 (rpm) before *

unaffected

Default status

affected

1779798165 (rpm) before *

unaffected

Default status

affected

1779798222 (rpm) before *

unaffected

Default status

unaffected

Default status

unaffected

Default status

unaffected

Default status

unaffected

Timeline

2026-02-06:	Reported to Red Hat.
2026-02-06:	Made public.

Credits

This issue was discovered by Zoltan Fridrich (Red Hat).

References

access.redhat.com/errata/RHSA-2026:18143 (RHSA-2026:18143) vendor-advisory

access.redhat.com/errata/RHSA-2026:18599 (RHSA-2026:18599) vendor-advisory

access.redhat.com/errata/RHSA-2026:21275 (RHSA-2026:21275) vendor-advisory

access.redhat.com/errata/RHSA-2026:22634 (RHSA-2026:22634) vendor-advisory

access.redhat.com/errata/RHSA-2026:7065 (RHSA-2026:7065) vendor-advisory

access.redhat.com/security/cve/CVE-2026-2100 vdb-entry

bugzilla.redhat.com/show_bug.cgi?id=2437308 (RHBZ#2437308) issue-tracking

github.com/p11-glue/p11-kit/pull/740

cve.org (CVE-2026-2100)

nvd.nist.gov (CVE-2026-2100)

Download JSON

help @ threatint.eu