VYPR
High severity7.8NVD Advisory· Published May 27, 2026· Updated Jun 16, 2026

CVE-2026-46053

CVE-2026-46053

Description

In the Linux kernel, the following vulnerability has been resolved:

net: rds: fix MR cleanup on copy error

__rds_rdma_map() hands sg/pages ownership to the transport after get_mr() succeeds. If copying the generated cookie back to user space fails after that point, the error path must not free those resources again before dropping the MR reference.

Remove the duplicate unpin/free from the put_user() failure branch so that MR teardown is handled only through the existing final cleanup path.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

10
  • Linux/Kernel8 versions
    cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*+ 7 more
    • cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*range: >=5.6.1,<5.10.258
    • cpe:2.3:o:linux:linux_kernel:5.6:-:*:*:*:*:*:*
    • cpe:2.3:o:linux:linux_kernel:5.6:rc3:*:*:*:*:*:*
    • cpe:2.3:o:linux:linux_kernel:5.6:rc4:*:*:*:*:*:*
    • cpe:2.3:o:linux:linux_kernel:5.6:rc5:*:*:*:*:*:*
    • cpe:2.3:o:linux:linux_kernel:5.6:rc6:*:*:*:*:*:*
    • cpe:2.3:o:linux:linux_kernel:5.6:rc7:*:*:*:*:*:*
    • (no CPE)
  • osv-coords2 versions
    >= 5.6.0, < 5.10.258+ 1 more
    • (no CPE)range: >= 5.6.0, < 5.10.258
    • (no CPE)range: < 7.0.11-1.1

Patches

Vulnerability mechanics

References

8

News mentions

0

No linked articles in our index yet.