CVE-2026-46039 - Vulnerability Details - OpenCVE

In the Linux kernel, the following vulnerability has been resolved: rxgk: Fix potential integer overflow in length check Fix potential integer overflow in rxgk_extract_token() when checking the length of the ticket. Rather than rounding up the value to be tested (which might overflow), round down the size of the available data.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

No EPSS score available.

Key SSVC decision points have not yet been added.

Vendors	Products
Linux	Linux Kernel

No data.

No data.

No data.

References

Link	Providers
https://git.kernel.org/stable/c/183d37f12d1c8ed24a5bfc7addad05510da22a94
https://git.kernel.org/stable/c/43222ac484f93b3ec2d240a7575e1cedd31f5fa4
https://git.kernel.org/stable/c/6929350080f4da292d111a3b33e53138fee51cec

History

Wed, 27 May 2026 14:15:00 +0000

Type	Values Removed	Values Added
Description		In the Linux kernel, the following vulnerability has been resolved: rxgk: Fix potential integer overflow in length check Fix potential integer overflow in rxgk_extract_token() when checking the length of the ticket. Rather than rounding up the value to be tested (which might overflow), round down the size of the available data.
Title		rxgk: Fix potential integer overflow in length check
First Time appeared		Linux Linux linux Kernel
CPEs		cpe:2.3:o:linux:linux_kernel::::::::
Vendors & Products		Linux Linux linux Kernel
References		https://git.kernel.org/stable/c/183d37f12d1c8ed24a5bfc7addad05510da22a94 https://git.kernel.org/stable/c/43222ac484f93b3ec2d240a7575e1cedd31f5fa4 https://git.kernel.org/stable/c/6929350080f4da292d111a3b33e53138fee51cec

MITRE

Status: PUBLISHED

Assigner: Linux

Published: 2026-05-27T12:56:51.317Z

Updated: 2026-05-27T12:56:51.317Z

Reserved: 2026-05-13T15:03:33.093Z

Link: CVE-2026-46039

Vulnrichment

No data.

NVD

Status : Awaiting Analysis

Published: 2026-05-27T14:17:23.263

Modified: 2026-05-27T14:48:03.013

Link: CVE-2026-46039

Redhat

No data.

OpenCVE Enrichment

No data.

{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2026-46039", "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "state": "PUBLISHED", "assignerShortName": "Linux", "dateReserved": "2026-05-13T15:03:33.093Z", "datePublished": "2026-05-27T12:56:51.317Z", "dateUpdated": "2026-05-27T12:56:51.317Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "shortName": "Linux", "dateUpdated": "2026-05-27T12:56:51.317Z"}, "descriptions": [{"lang": "en", "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nrxgk: Fix potential integer overflow in length check\n\nFix potential integer overflow in rxgk_extract_token() when checking the\nlength of the ticket. Rather than rounding up the value to be tested\n(which might overflow), round down the size of the available data."}], "affected": [{"product": "Linux", "vendor": "Linux", "defaultStatus": "unaffected", "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git", "programFiles": ["net/rxrpc/rxgk_app.c", "net/rxrpc/rxgk_common.h"], "versions": [{"version": "2429a197648178cd4dc930a9d87c13c547460564", "lessThan": "43222ac484f93b3ec2d240a7575e1cedd31f5fa4", "status": "affected", "versionType": "git"}, {"version": "2429a197648178cd4dc930a9d87c13c547460564", "lessThan": "183d37f12d1c8ed24a5bfc7addad05510da22a94", "status": "affected", "versionType": "git"}, {"version": "2429a197648178cd4dc930a9d87c13c547460564", "lessThan": "6929350080f4da292d111a3b33e53138fee51cec", "status": "affected", "versionType": "git"}, {"version": "71571e187106631a8127f2dde780f35caa358d33", "status": "affected", "versionType": "git"}, {"version": "6.16.9", "lessThan": "6.17", "status": "affected", "versionType": "semver"}]}, {"product": "Linux", "vendor": "Linux", "defaultStatus": "affected", "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git", "programFiles": ["net/rxrpc/rxgk_app.c", "net/rxrpc/rxgk_common.h"], "versions": [{"version": "6.17", "status": "affected"}, {"version": "0", "lessThan": "6.17", "status": "unaffected", "versionType": "semver"}, {"version": "6.18.27", "lessThanOrEqual": "6.18.*", "status": "unaffected", "versionType": "semver"}, {"version": "7.0.4", "lessThanOrEqual": "7.0.*", "status": "unaffected", "versionType": "semver"}, {"version": "7.1-rc1", "lessThanOrEqual": "*", "status": "unaffected", "versionType": "original_commit_for_fix"}]}], "cpeApplicability": [{"nodes": [{"operator": "OR", "negate": false, "cpeMatch": [{"vulnerable": true, "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "versionStartIncluding": "6.17", "versionEndExcluding": "6.18.27"}, {"vulnerable": true, "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "versionStartIncluding": "6.17", "versionEndExcluding": "7.0.4"}, {"vulnerable": true, "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "versionStartIncluding": "6.17", "versionEndExcluding": "7.1-rc1"}, {"vulnerable": true, "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "versionStartIncluding": "6.16.9"}]}]}], "references": [{"url": "https://git.kernel.org/stable/c/43222ac484f93b3ec2d240a7575e1cedd31f5fa4"}, {"url": "https://git.kernel.org/stable/c/183d37f12d1c8ed24a5bfc7addad05510da22a94"}, {"url": "https://git.kernel.org/stable/c/6929350080f4da292d111a3b33e53138fee51cec"}], "title": "rxgk: Fix potential integer overflow in length check", "x_generator": {"engine": "bippy-1.2.0"}}}}