CVE Catalog

CVE-2026-46145

HighCVSS 7.8
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.14%

4th percentile - higher than 4% of all known CVEs

Summary

In the Linux kernel, the RDMA/mana driver lacked validation of the rx_hash_key_len value from userspace. This allowed unbounded memcpy, potentially causing kernel memory corruption.

Risk Assessment

An attacker with user privileges can overwrite kernel memory, leading to privilege escalation, system crash, or sensitive data leakage.

Recommendation

Immediately update the Linux kernel to a version that includes the fix validating rx_hash_key_len before memcpy.

Original NVD description (English source)

In the Linux kernel, the following vulnerability has been resolved: RDMA/mana: Validate rx_hash_key_len Sashiko points out that rx_hash_key_len comes from a uAPI structure and is blindly passed to memcpy, allowing the userspace to trash kernel memory. Bounds check it so the memcpy cannot overflow.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS