Description
In the Linux kernel, the following vulnerability has been resolved:

rxrpc: Fix key parsing memleak

In rxrpc_preparse_xdr_yfs_rxgk(), the memory attached to token->rxgk can be
leaked in a few error paths after it's allocated.

Fix this by freeing it in the "reject_token:" case.
Published: 2026-04-24
Score: 5.5 Medium
EPSS: < 1% Very Low
KEV: No
Impact: Memory Leak
Action: Apply Patch
AI Analysis

Impact

The vulnerability resides in the Linux kernel’s rxrpc protocol handler. An error in the key parsing routine can cause memory that was allocated for a token to be left referenced after an error path, resulting in a memory leak. The leaked memory may impact system stability or memory availability. The weakness is a classic memory management issue classified as CWE‑401 and CWE‑772.

Affected Systems

The affected code is part of the Linux kernel. Versions 6.16 and all 7.0 release candidates up through 7.0 rc7 are vulnerable.

Risk and Exploitability

The CVSS score of 5.5 places the flaw in the moderate range. The EPSS score indicates an exploitation probability of less than 1 %. The vulnerability is not listed in CISA’s KEV catalog. No public exploitation is documented in the CVE record. Based on the description, the likely attack vector would require the attacker to trigger error conditions in the rxrpc protocol, which suggests a local or network‑based vector that can manipulate rxrpc traffic. However, explicit exploitation requirements are not detailed in the available data, so the attack surface is inferred to be limited.

Generated by OpenCVE AI on April 28, 2026 at 13:50 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade the system to a Linux kernel version that includes the rxrpc key parsing memory leak fix.
  • If an immediate kernel update is not feasible, disable the rxrpc protocol or restrict inbound traffic that can invoke it.
  • Apply additional kernel hardening and monitor system memory usage for anomalous patterns associated with rxrpc.

Generated by OpenCVE AI on April 28, 2026 at 13:50 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Mon, 27 Apr 2026 20:30:00 +0000

Type Values Removed Values Added
Weaknesses CWE-401
CPEs cpe:2.3:o:linux:linux_kernel:6.16:-:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:7.0:rc1:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:7.0:rc2:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:7.0:rc3:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:7.0:rc4:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:7.0:rc5:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:7.0:rc6:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:7.0:rc7:*:*:*:*:*:*

Sat, 25 Apr 2026 00:15:00 +0000

Type Values Removed Values Added
Weaknesses CWE-772
References
Metrics threat_severity

None

 cvssV3_1

{'score': 5.5, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H'}

threat_severity

Low

Fri, 24 Apr 2026 15:00:00 +0000

Type Values Removed Values Added
Description In the Linux kernel, the following vulnerability has been resolved: rxrpc: Fix key parsing memleak In rxrpc_preparse_xdr_yfs_rxgk(), the memory attached to token->rxgk can be leaked in a few error paths after it's allocated. Fix this by freeing it in the "reject_token:" case.
Title rxrpc: Fix key parsing memleak
First Time appeared Linux
Linux linux Kernel
CPEs cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Vendors & Products Linux
Linux linux Kernel
References

Subscriptions

Linux Linux Kernel
cve-icon MITRE

Status: PUBLISHED

Assigner: Linux

Published:

Updated: 2026-05-11T22:12:46.954Z

Reserved: 2026-03-09T15:48:24.127Z

Link: CVE-2026-31643

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Analyzed

Published: 2026-04-24T15:16:43.673

Modified: 2026-04-27T20:19:26.580

Link: CVE-2026-31643

cve-icon Redhat

Severity : Low

Publid Date: 2026-04-24T00:00:00Z

Links: CVE-2026-31643 - Bugzilla

cve-icon OpenCVE Enrichment

Updated: 2026-04-28T14:00:16Z

Weaknesses