CVE-2026-46053

Source
https://cve.org/CVERecord?id=CVE-2026-46053
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2026-46053.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2026-46053
Downstream
Related
Published
2026-05-27T12:57:11.870Z
Modified
2026-06-18T03:54:40.643558479Z
Severity
  • 7.8 (High) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVSS Calculator
Summary
net: rds: fix MR cleanup on copy error
Details

In the Linux kernel, the following vulnerability has been resolved:

net: rds: fix MR cleanup on copy error

_rdsrdmamap() hands sg/pages ownership to the transport after getmr() succeeds. If copying the generated cookie back to user space fails after that point, the error path must not free those resources again before dropping the MR reference.

Remove the duplicate unpin/free from the put_user() failure branch so that MR teardown is handled only through the existing final cleanup path.

Database specific
{
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/46xxx/CVE-2026-46053.json",
    "cna_assigner": "Linux"
}
References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
0d4597c8c5abdeeaf50774066c16683f30184dc8
Fixed
91a44b406bc1f9e1c5da0cb7d0d5991b43b79147
Fixed
106dc689206610cfa2098f593fdd1e020c997835
Fixed
ec55a86f7fba7d9111df94b9c11a4755ed492995
Fixed
8fdbb6262a4a3ed44a0830a7793903b54bb27bdc
Fixed
d95cea9298be1ba8876e3f156be96d3a492085ca
Fixed
033370ffb3c9c0264d19f8ba9ef769523266589a
Fixed
b3cb8cae530b2727d8245684148bb49425f6765c
Fixed
8141a2dc70080eda1aedc0389ed2db2b292af5bd

Database specific

source
"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2026-46053.json"

Linux / Kernel

Package

Name
Kernel

Affected ranges

Type
ECOSYSTEM
Events
Introduced
5.6.0
Fixed
5.10.258
Type
ECOSYSTEM
Events
Introduced
5.11.0
Fixed
5.15.209
Type
ECOSYSTEM
Events
Introduced
5.16.0
Fixed
6.1.175
Type
ECOSYSTEM
Events
Introduced
6.2.0
Fixed
6.6.140
Type
ECOSYSTEM
Events
Introduced
6.7.0
Fixed
6.12.86
Type
ECOSYSTEM
Events
Introduced
6.13.0
Fixed
6.18.27
Type
ECOSYSTEM
Events
Introduced
6.19.0
Fixed
7.0.4

Database specific

source
"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2026-46053.json"