Primary

Context

Linux Kernel Rxrpc Paged Fragments Vulnerability Unshared Data and Response Packets

Vulnerability

Patched

A vulnerability in the Linux kernel's Rxrpc implementation has been addressed. The issue arose because the DATA and RESPONSE packet handlers did not properly unshare packets containing externally-owned paged fragments before processing them. This oversight allowed such packets to bypass necessary security operations, leading to potential vulnerabilities. The problem has been fixed by extending the packet handling to unshare these fragments, ensuring proper security measures are applied.

Impact

Exploitation of this vulnerability could lead to improper handling of packet decryption, potentially allowing for security operations to be bypassed.

Remediation

Users can upgrade to the latest version of the Linux kernel where this vulnerability has been addressed.

Added: May 11, 2026, 8:20 AM

Updated: May 11, 2026, 8:20 AM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

0.6

exploitability

4.8

remediation

7.7

relevance

8.0

threat

3.7

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

0.6

exploitability

4.8

remediation

7.7

relevance

8.0

threat

3.7

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel Rxrpc Paged Fragments Vulnerability Unshared Data and Response Packets

Vulnerability

Impact

Remediation

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating