Home

Description

In the Linux kernel, the following vulnerability has been resolved: rxgk: Fix potential integer overflow in length check Fix potential integer overflow in rxgk_extract_token() when checking the length of the ticket. Rather than rounding up the value to be tested (which might overflow), round down the size of the available data.

PUBLISHED Reserved 2026-05-13 | Published 2026-05-27 | Updated 2026-05-30 | Assigner Linux




CRITICAL: 9.8CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Product status

Default status
unaffected

2429a197648178cd4dc930a9d87c13c547460564 (git) before 43222ac484f93b3ec2d240a7575e1cedd31f5fa4
affected

2429a197648178cd4dc930a9d87c13c547460564 (git) before 183d37f12d1c8ed24a5bfc7addad05510da22a94
affected

2429a197648178cd4dc930a9d87c13c547460564 (git) before 6929350080f4da292d111a3b33e53138fee51cec
affected

71571e187106631a8127f2dde780f35caa358d33 (git)
affected

6.16.9 (semver) before 6.17
affected

Default status
affected

6.17
affected

Any version before 6.17
unaffected

6.18.27 (semver)
unaffected

7.0.4 (semver)
unaffected

7.1-rc1 (original_commit_for_fix)
unaffected

References

git.kernel.org/...c/43222ac484f93b3ec2d240a7575e1cedd31f5fa4

git.kernel.org/...c/183d37f12d1c8ed24a5bfc7addad05510da22a94

git.kernel.org/...c/6929350080f4da292d111a3b33e53138fee51cec

cve.org (CVE-2026-46039)

nvd.nist.gov (CVE-2026-46039)

Download JSON