Description
In the Linux kernel, the following vulnerability has been resolved:

rxrpc: Fix re-decryption of RESPONSE packets

If a RESPONSE packet gets a temporary failure during processing, it may end
up in a partially decrypted state - and then get requeued for a retry.

Fix this by just discarding the packet; we will send another CHALLENGE
packet and thereby elicit a further response. Similarly, discard an
incoming CHALLENGE packet if we get an error whilst generating a RESPONSE;
the server will send another CHALLENGE.
Published: 2026-05-27
Score: n/a
EPSS: n/a
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

A Linux kernel flaw allows a RESPONSE packet to be in a partially decrypted state when a temporary processing failure occurs. The packet is then requeued for a retry. Because the incomplete decryption is not detected, the system could expose sensitive information through re-decryption of that packet. The patch resolves the issue by discarding the malformed packet and issuing a new CHALLENGE to elicit a fresh, properly encrypted response. The weakness is a cryptographic error, potentially falling under CWE‑327.

Affected Systems

The vulnerability affects the Linux kernel in all releases that implement the rxrpc protocol. No specific vendors, products, or version ranges are listed in the CNA data. The CPE string indicates the entire Linux kernel family. Administrators should verify whether their system kernel includes this bug and plan to update accordingly.

Risk and Exploitability

No CVSS score or EPSS value is available, and the vulnerability is not listed in the CISA KEV catalog. Because the exploitability details are missing from the advisory, the actual severity cannot be quantified from the supplied data. The existing documentation does not describe a known exploitation technique or provide evidence that this flaw has been exploited in the wild. The risk remains theoretical until the kernel is updated to a corrected release.

Generated by OpenCVE AI on May 27, 2026 at 17:08 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Update the Linux kernel to a version that contains the rxrpc decryption patch.
  • If upgrading immediately is not feasible, limit network exposure of the rxrpc service by disabling it on unused network interfaces or using firewall rules to block unpredictable traffic.
  • Monitor system logs for repeated decryption failures and ensure that re-queued packets do not linger beyond an acceptable retry window.

Generated by OpenCVE AI on May 27, 2026 at 17:08 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Wed, 27 May 2026 17:30:00 +0000

Type Values Removed Values Added
Weaknesses CWE-327

Wed, 27 May 2026 14:15:00 +0000

Type Values Removed Values Added
Description In the Linux kernel, the following vulnerability has been resolved: rxrpc: Fix re-decryption of RESPONSE packets If a RESPONSE packet gets a temporary failure during processing, it may end up in a partially decrypted state - and then get requeued for a retry. Fix this by just discarding the packet; we will send another CHALLENGE packet and thereby elicit a further response. Similarly, discard an incoming CHALLENGE packet if we get an error whilst generating a RESPONSE; the server will send another CHALLENGE.
Title rxrpc: Fix re-decryption of RESPONSE packets
First Time appeared Linux
Linux linux Kernel
CPEs cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Vendors & Products Linux
Linux linux Kernel
References

Subscriptions

Linux Linux Kernel
cve-icon MITRE

Status: PUBLISHED

Assigner: Linux

Published:

Updated: 2026-05-27T12:55:39.740Z

Reserved: 2026-05-13T15:03:33.090Z

Link: CVE-2026-45988

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Awaiting Analysis

Published: 2026-05-27T14:17:16.270

Modified: 2026-05-27T14:48:03.013

Link: CVE-2026-45988

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-05-27T21:30:34Z

Weaknesses