Home

Description

In the Linux kernel, the following vulnerability has been resolved: rxrpc: Fix re-decryption of RESPONSE packets If a RESPONSE packet gets a temporary failure during processing, it may end up in a partially decrypted state - and then get requeued for a retry. Fix this by just discarding the packet; we will send another CHALLENGE packet and thereby elicit a further response. Similarly, discard an incoming CHALLENGE packet if we get an error whilst generating a RESPONSE; the server will send another CHALLENGE.

PUBLISHED Reserved 2026-05-13 | Published 2026-05-27 | Updated 2026-05-30 | Assigner Linux




CRITICAL: 9.8CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Product status

Default status
unaffected

17926a79320afa9b95df6b977b40cca6d8713cea (git) before d61482be4aae1835b78875761206241835a7510e
affected

17926a79320afa9b95df6b977b40cca6d8713cea (git) before 7b89868305052b94a91b708c462bc2281fa42a4a
affected

17926a79320afa9b95df6b977b40cca6d8713cea (git) before 76cb9a2d252274adfae6e293a292434631a7d472
affected

17926a79320afa9b95df6b977b40cca6d8713cea (git) before f55b383070170e988e4dec28be2af1714d258521
affected

17926a79320afa9b95df6b977b40cca6d8713cea (git) before 0422e7a4883f25101903f3e8105c0808aa5f4ce9
affected

Default status
affected

2.6.22
affected

Any version before 2.6.22
unaffected

6.6.140 (semver)
unaffected

6.12.86 (semver)
unaffected

6.18.27 (semver)
unaffected

7.0.4 (semver)
unaffected

7.1-rc1 (original_commit_for_fix)
unaffected

References

git.kernel.org/...c/d61482be4aae1835b78875761206241835a7510e

git.kernel.org/...c/7b89868305052b94a91b708c462bc2281fa42a4a

git.kernel.org/...c/76cb9a2d252274adfae6e293a292434631a7d472

git.kernel.org/...c/f55b383070170e988e4dec28be2af1714d258521

git.kernel.org/...c/0422e7a4883f25101903f3e8105c0808aa5f4ce9

cve.org (CVE-2026-45988)

nvd.nist.gov (CVE-2026-45988)

Download JSON