VDB

CVE-2026-46053

CVE-2026-46053 PUBLISHED CVSS 7.8 HIGH

Reported by Linux · Published May 27, 2026

In the Linux kernel, the following vulnerability has been resolved: net: rds: fix MR cleanup on copy error __rds_rdma_map() hands sg/pages ownership to the transport after get_mr() succeeds. If copying the generated cookie back to user space fails after that point, the error path must not free those resources again before dropping the MR reference. Remove the duplicate unpin/free from the put_user() failure branch so that MR teardown is handled only through the existing final cleanup path.

EPSS 0.01% · 2.5th percentile

Risk Scores

CVSS 3.1
7.8
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS Score
0.01%
2.5th percentile

Affected Products

VendorProductVersions
LinuxLinux0d4597c8c5abdeeaf50774066c16683f30184dc8, 0d4597c8c5abdeeaf50774066c16683f30184dc8, 0d4597c8c5abdeeaf50774066c16683f30184dc8
LinuxLinux5.6, 0, 5.10.258
linuxlinux_kernel5.6, 5.6, 5.6
LinuxLinux0d4597c8c5abdeeaf50774066c16683f30184dc8, 0d4597c8c5abdeeaf50774066c16683f30184dc8, 0d4597c8c5abdeeaf50774066c16683f30184dc8

Timeline

  • May 27, 2026 CVE Published
  • May 28, 2026 EPSS Score
  • May 29, 2026 EPSS Score
  • May 29, 2026 Security Advisory
  • May 30, 2026 EPSS Score
  • May 31, 2026 EPSS Score
  • Jun 1, 2026 EPSS Score
  • Jun 4, 2026 Coalition ESS Score
  • Jun 5, 2026 EPSS Score
  • Jun 16, 2026 CVE Updated

References

Open in Interactive Console →
$ Console Community · 100/wk Open console ›