HIGHCVE-2026-46027Published Modified CNA Linux
CVE-2026-46027: net/smc: avoid early lgr access in smc_clc_wait_msg
In the Linux kernel, the following vulnerability has been resolved: net/smc: avoid early lgr access in smc_clc_wait_msg A CLC decline can be received while the handshake is still in an early stage, before the connection has been associated with a link group. The decline handling in smc_clc_wait_msg() updates link-group level sync state for first-contact declines, but that state only exists after link group setup has completed. Guard the link-group update accordingly and keep the per-socket peer diagnosis handling unchanged. This preserves the existing sync_err handling for established link-group contexts and avoids touching link-group state before it is available.
Metrics
- CVSS v3.1
- 7.5
- Severity
- HIGH
- Fixed in
- 0
- Affected Products
- 2
Fix available
05a8db80f721deee8e916c2cfdee78decda02ce4f6.6.1406.12.866.18.276180a296ca65b08a81914805cbc0f78da5f10a1f7.0.47.1-rc183bcf9228b0501694fb2589ed1d142855a2887f2ea0b5d0fe96356dce38f98375a57c52a04e13712f0858e1d5624bb120b198f2a8528f97a9b0ae069
Affected packages
- Linux / Linux< f0858e1d5624bb120b198f2a8528f97a9b0ae069 (from 0cfdd8f92cac01afbb12e4500514036a2b78756b) · < 6180a296ca65b08a81914805cbc0f78da5f10a1f (from 0cfdd8f92cac01afbb12e4500514036a2b78756b) · < ea0b5d0fe96356dce38f98375a57c52a04e13712 (from 0cfdd8f92cac01afbb12e4500514036a2b78756b) · < 83bcf9228b0501694fb2589ed1d142855a2887f2 (from 0cfdd8f92cac01afbb12e4500514036a2b78756b) · < 5a8db80f721deee8e916c2cfdee78decda02ce4f (from 0cfdd8f92cac01afbb12e4500514036a2b78756b)
- Linux / Linux4.11Fixed in 0, 6.6.140, 6.12.86, 6.18.27, 7.0.4, 7.1-rc1
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H