CVE-2026-46068 PUBLISHED

crypto: nx - fix bounce buffer leaks in nx842_crypto_{alloc,free}_ctx

Assigner: Linux
Reserved: 13.05.2026 Published: 27.05.2026 Updated: 27.05.2026

In the Linux kernel, the following vulnerability has been resolved:

crypto: nx - fix bounce buffer leaks in nx842_crypto_{alloc,free}_ctx

The bounce buffers are allocated with __get_free_pages() using BOUNCE_BUFFER_ORDER (order 2 = 4 pages), but both the allocation error path and nx842_crypto_free_ctx() release the buffers with free_page(). Use free_pages() with the matching order instead.

Product Status

Vendor	Linux
Product	Linux
Versions	Default: unaffected affected from ed70b479c2c0b6e1319f0cb2de19f1051be219a4 to f17a4850d1ce7c11cba8b1830b9bfedfede878bb (excl.) affected from ed70b479c2c0b6e1319f0cb2de19f1051be219a4 to 910bb34b801d39794e656f7d48414844b2bd354e (excl.) affected from ed70b479c2c0b6e1319f0cb2de19f1051be219a4 to 5c07962fed66e1238fad7635fa150570bd38b4c5 (excl.) affected from ed70b479c2c0b6e1319f0cb2de19f1051be219a4 to 80fd99d7c30ea889662d21f1b44d8fea4c83138d (excl.) affected from ed70b479c2c0b6e1319f0cb2de19f1051be219a4 to adb3faf2db1a66d0f015b44ac909a32dfc7f2f9c (excl.)

Vendor	Linux
Product	Linux
Versions	Default: affected Version 4.2 is affected unaffected from 0 to 4.2 (excl.) unaffected from 6.6.141 to 6.6.* (incl.) unaffected from 6.12.88 to 6.12.* (incl.) unaffected from 6.18.27 to 6.18.* (incl.) unaffected from 7.0.4 to 7.0.* (incl.) unaffected from 7.1-rc1 to * (incl.)

CVE-2026-46068 PUBLISHED

crypto: nx - fix bounce buffer leaks in nx842_crypto_{alloc,free}_ctx

Product Status

References