CVE-2026-46145 | THREATINT

Description

In the Linux kernel, the following vulnerability has been resolved: RDMA/mana: Validate rx_hash_key_len Sashiko points out that rx_hash_key_len comes from a uAPI structure and is blindly passed to memcpy, allowing the userspace to trash kernel memory. Bounds check it so the memcpy cannot overflow.

PUBLISHED Reserved 2026-05-13 | Published 2026-05-28 | Updated 2026-05-30 | Assigner Linux

HIGH: 7.8CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Product status

Default status

unaffected

0266a177631d4c6b963b5b12dd986a8c5abdbf06 (git) before 7d7c9f0fcd19c4d2f0164347c58d49cafa961b72

affected

0266a177631d4c6b963b5b12dd986a8c5abdbf06 (git) before 11c1431d641e0e4e0529e96957995820600c7287

affected

0266a177631d4c6b963b5b12dd986a8c5abdbf06 (git) before 012796f9541fcd0c1fa8ae4da7eb4d83931ef838

affected

0266a177631d4c6b963b5b12dd986a8c5abdbf06 (git) before 7d94f155f354b961c598f71bafa804dceded513f

affected

0266a177631d4c6b963b5b12dd986a8c5abdbf06 (git) before 6dd2d4ad9c8429523b1c220c5132bd551c006425

affected

Default status

affected

6.2

affected

Any version before 6.2

unaffected

6.6.141 (semver)

unaffected

6.12.88 (semver)

unaffected

6.18.30 (semver)

unaffected

7.0.7 (semver)

unaffected

7.1-rc3 (original_commit_for_fix)

unaffected

References

git.kernel.org/...c/7d7c9f0fcd19c4d2f0164347c58d49cafa961b72

git.kernel.org/...c/11c1431d641e0e4e0529e96957995820600c7287

git.kernel.org/...c/012796f9541fcd0c1fa8ae4da7eb4d83931ef838

git.kernel.org/...c/7d94f155f354b961c598f71bafa804dceded513f

git.kernel.org/...c/6dd2d4ad9c8429523b1c220c5132bd551c006425

cve.org (CVE-2026-46145)

nvd.nist.gov (CVE-2026-46145)

Download JSON

help @ threatint.eu