In the Linux kernel, the rxrpc protocol had a flaw where a packet with a misaligned crypto length was not handled safely, leading to a potential decryption failure or abort. The patch adds bounds checking, aborts on non‑ENOMEM decryption errors, and removes the WARN_ON_ONCE guard so that it cannot be repeatedly triggered, though a trace line may still be emitted. The primary effect of the vulnerability is a crash or denial of service of the affected component, not arbitrary code execution.

All Linux kernel implementations that include the rxrpc protocol before the patch that fixes the crypto alignment handling are affected. No specific kernel versions are listed, so any deployment running a pre‑patch Linux kernel with rxrpc support is vulnerable.

Based on the description, it is inferred that the attack requires a remote attacker capable of sending crafted rxrpc packets to a target that accepts such traffic. The EPSS score of 0.00018 indicates a very low likelihood of exploitation, and the vulnerability is not listed in KEV, meaning no known widespread exploitation reports. The risk is primarily a DoS scenario; an attacker can trigger a service crash with a single malformed packet. While the CVSS score of 7.5 reflects high severity, the extremely low EPSS score reduces the urgency for urgent remediation. The removal of the WARN_ON_ONCE guard reduces the chance of repeated trivial exploitation, though a single attack could still be successful.