VDB
CVE-2026-46053
CVE-2026-46053
PUBLISHED
CVSS 7.8 HIGH
Reported by Linux · Published May 27, 2026
In the Linux kernel, the following vulnerability has been resolved: net: rds: fix MR cleanup on copy error __rds_rdma_map() hands sg/pages ownership to the transport after get_mr() succeeds. If copying the generated cookie back to user space fails after that point, the error path must not free those resources again before dropping the MR reference. Remove the duplicate unpin/free from the put_user() failure branch so that MR teardown is handled only through the existing final cleanup path.
EPSS 0.01% · 2.5th percentile
Risk Scores
CVSS 3.1
7.8
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS Score
0.01%
2.5th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Linux | Linux | 0d4597c8c5abdeeaf50774066c16683f30184dc8, 0d4597c8c5abdeeaf50774066c16683f30184dc8, 0d4597c8c5abdeeaf50774066c16683f30184dc8 |
| Linux | Linux | 5.6, 0, 5.10.258 |
| linux | linux_kernel | 5.6, 5.6, 5.6 |
| Linux | Linux | 0d4597c8c5abdeeaf50774066c16683f30184dc8, 0d4597c8c5abdeeaf50774066c16683f30184dc8, 0d4597c8c5abdeeaf50774066c16683f30184dc8 |
Timeline
- May 27, 2026 CVE Published
- May 28, 2026 EPSS Score
- May 29, 2026 EPSS Score
- May 29, 2026 Security Advisory
- May 30, 2026 EPSS Score
- May 31, 2026 EPSS Score
- Jun 1, 2026 EPSS Score
- Jun 4, 2026 Coalition ESS Score
- Jun 5, 2026 EPSS Score
- Jun 16, 2026 CVE Updated