PT-2026-44308 · Linux · Linux Kernel

Published

2026-05-28

·

Updated

2026-07-10

·

CVE-2026-46185

CVSS v3.1

9.1

Critical

VectorAV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H
Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)
Description An out-of-bounds read exists in the symlink data() function. This occurs because smb2 check message() returns success without validating the length for the symlink error response. Consequently, iov->iov len may be smaller than the size of struct smb2 err rsp. If the buffer contains only the base SMB2 header, accessing err->ErrorContextCount or err->ByteCount results in an out-of-bounds read, which is a memory access error where the system reads data outside the intended buffer boundaries.
Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Out of bounds Read

Found an issue in the description? Have something to add? Feel free to write us 👾

Weakness Enumeration

Related Identifiers

CVE-2026-46185
ECHO-D2A3-9D9C-9856
OPENSUSE-SU-2026:10954-1
SUSE-SU-2026:22521-1
SUSE-SU-2026:22522-1
SUSE-SU-2026:2799-1
SUSE-SU-2026:2800-1
USN-8488-1
USN-8488-2
USN-8489-1
USN-8490-1
USN-8490-2
USN-8491-1
USN-8492-1
USN-8492-2
USN-8492-3
USN-8492-4
USN-8492-5
USN-8497-1
USN-8498-1
USN-8499-1
USN-8507-1
USN-8508-1

Affected Products

Linux Kernel