CVE-2026-46000

Advisory lineage Upstream: 0 Downstream: 8

Downstream

DEBIAN-CVE-2026-46000 OPENSUSE-SU-2026:10954-1 UBUNTU-CVE-2026-46000 USN-8370-1 USN-8371-1 USN-8373-1

Awaiting Analysis

Published: 27 May 2026, 12:55

Last modified:14 Jun 2026, 17:47

Vulnerability Summary

Overall Risk (default)

minimal

0/100

CVSS Score

No data

EPSS Score

0.2% LOW

0% probability +0.18%

KEV

Not listed

Ransomware

No reports

Public exploits

None found

Dark Web

Not detected

Timeline

27 May 2026, 12:55

Published

Vulnerability first disclosed

14 Jun 2026, 17:47

Last Modified

Vulnerability information updated

Description

In the Linux kernel, the following vulnerability has been resolved: rxrpc: Fix conn-level packet handling to unshare RESPONSE packets The security operations that verify the RESPONSE packets decrypt bits of it in place - however, the sk_buff may be shared with a packet sniffer, which would lead to the sniffer seeing an apparently corrupt packet (actually decrypted). Fix this by handing a copy of the packet off to the specific security handler if the packet was cloned.

EPSS Trends

Current EPSS score: 0.20%• Percentile: 10%

Affected Systems

linux•linux
≥ 17926a79320afa9b95df6b977b40cca6d8713cea, < c0428a22daf69714dc042b67ea759956b74c74e5 | ≥ 17926a79320afa9b95df6b977b40cca6d8713cea, < 98a2046d155f73f6cf5d2c493c5e09b4963e2e12 | ≥ 17926a79320afa9b95df6b977b40cca6d8713cea, < ca71ac2de389b01eecdc48bfafbdf073ec232044 | ≥ 17926a79320afa9b95df6b977b40cca6d8713cea, < d9b93a0f57ca5f6831bfaa34014b6cd705564a00 | ≥ 17926a79320afa9b95df6b977b40cca6d8713cea, < 24481a7f573305706054c59e275371f8d0fe919f | 2.6.22