PT-2026-43910 · Linux · Linux Kernel

Published

2026-05-27

Updated

2026-06-16

CVE-2026-46043

CVSS v4.0

9.3

Critical

Vector

AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 7.0.11-1.1

Description An issue exists in the RDMA/rxe component where the rxe rcv() function fails to properly validate the incoming packet length before calculating the payload size. The payload size() calculation subtracts the attacker-controlled BTH pad field and the RXE ICRC SIZE from the packet length. If a packet is short or contains a forged non-zero BTH pad, it can cause an integer underflow, passing a negative or underflowed value to subsequent receive-path processes.

Recommendations Update to version 7.0.11-1.1.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2026-46043

ECHO-A558-0C0D-D635

OPENSUSE-SU-2026:10954-1

SUSE-SU-2026:22108-1

SUSE-SU-2026:2310-1

SUSE-SU-2026:2331-1

SUSE-SU-2026:2332-1

SUSE-SU-2026:2383-1

SUSE-SU-2026:2421-1

Affected Products

Linux Kernel

PT-2026-43910 · Linux · Linux Kernel

CVE-2026-46043

Related Identifiers

Affected Products

References · 495