CVE-2026-46010
HighCVSS 8.1Exploitation Probability (EPSS)
Low risk32th percentile - higher than 32% of all known CVEs
Summary
A vulnerability in the Linux kernel related to error handling in the rxgk_extract_token() function has been fixed. If rxgk_decrypt_skb() returns -ENOMEM, the function should return that error instead of continuing, which could lead to an abort.
Risk Assessment
Insufficient error handling may lead to unexpected system crashes, jeopardizing the stability and security of the operating environment.
Recommendation
It is recommended to update the Linux kernel to the latest version to benefit from the fixes related to error handling in the rxgk_extract_token() function.
Original NVD description (English source)
In the Linux kernel, the following vulnerability has been resolved: rxrpc: Fix error handling in rxgk_extract_token() Fix a missing bit of error handling in rxgk_extract_token(): in the event that rxgk_decrypt_skb() returns -ENOMEM, it should just return that rather than continuing on (for anything else, it generates an abort).

