Medium severity5.5NVD Advisory· Published May 27, 2026· Updated Jun 16, 2026
CVE-2026-46012
CVE-2026-46012
Description
In the Linux kernel, the following vulnerability has been resolved:
rxrpc: Fix memory leaks in rxkad_verify_response()
Fix rxkad_verify_response() to free the ticket and the server key under all circumstances by initialising the ticket pointer to NULL and then making all paths through the function after the first allocation has been done go through a single common epilogue that just releases everything - where all the releases skip on a NULL pointer.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2Patches
Vulnerability mechanics
References
5- git.kernel.org/stable/c/34f61a07e0cdefaecd3ec03bb5fb22215643678fnvdPatch
- git.kernel.org/stable/c/852b9d64cea421336579b2de3d1338dfa677e2ddnvdPatch
- git.kernel.org/stable/c/861b9a0a1823bf064a7b810d29502a9ef043f40fnvdPatch
- git.kernel.org/stable/c/c4b8f32e73eafd4a5076be890c7c8506ec04567cnvdPatch
- git.kernel.org/stable/c/c91f33fb8356dedc82bc56ce210f1a5dbee62a52nvdPatch
News mentions
0No linked articles in our index yet.