Memory Corruption in Linux Kernel Crypto Component Affecting Intel QAT Driver
CVE-2026-46081

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 27 May 2026

What is CVE-2026-46081?

A vulnerability in the Linux kernel affects its crypto component, particularly when dealing with asynchronous requests utilizing the Intel QuickAssist Technology (QAT) driver. The issue arises in the acomp_save_req() function, where the wrong pointer is stored, leading to memory corruption during asynchronous request completion. When the acomp_reqchain_done() callback is invoked improperly due to the incorrect pointer, it results in errors such as general protection faults. The problem is specifically observed when using the DMA virtual address interface in conjunction with asynchronous hardware implementations. This vulnerability has been addressed by correcting the pointer logic within the kernel functions to ensure the correct handling of request chains.

Affected Version(s)

Linux 64929fe8c0a43508eee952cf57903a61c52601e7 < 343a5bf68a8ff9affcf2b70677ea4cf40c195ee4

Linux 64929fe8c0a43508eee952cf57903a61c52601e7 < 1a2785e5985627f2265ba7775949601a29ba0d1e

Linux 64929fe8c0a43508eee952cf57903a61c52601e7

References

https://git.kernel.org/stable/c/343a5bf68a8ff9affcf2b7067...

https://git.kernel.org/stable/c/1a2785e5985627f2265ba7775...

https://git.kernel.org/stable/c/d7e20b9bd6c990773cf0c09e2...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 27, 2026
Vulnerability Reserved
May 13, 2026

CVE-2026-46081 Data

JSON