CVE-2026-46068
Published May 27, 2026
Modified May 27, 2026
Description
In the Linux kernel, the following vulnerability has been resolved: crypto: nx - fix bounce buffer leaks in nx842_crypto_{alloc,free}_ctx The bounce buffers are allocated with __get_free_pages() using BOUNCE_BUFFER_ORDER (order 2 = 4 pages), but both the allocation error path and nx842_crypto_free_ctx() release the buffers with free_page(). Use free_pages() with the matching order instead.
References
Other References
https://git.kernel.org/stable/c/5c07962fed66e1238fad7635fa150570bd38b4c5
https://git.kernel.org/stable/c/80fd99d7c30ea889662d21f1b44d8fea4c83138d
https://git.kernel.org/stable/c/910bb34b801d39794e656f7d48414844b2bd354e
https://git.kernel.org/stable/c/adb3faf2db1a66d0f015b44ac909a32dfc7f2f9c
https://git.kernel.org/stable/c/f17a4850d1ce7c11cba8b1830b9bfedfede878bb
Frequently Asked Questions
What is CVE-2026-46068? +
In the Linux kernel, the following vulnerability has been resolved:
crypto: nx - fix bounce buffer leaks in nx842_crypto_{alloc,free}_ctx
The bounce buffers are allocated with __get_free_pages() using
BOUNCE_BUFFER_ORDER (order 2 = 4 pages), but both the allocation error
path and nx842_crypto_free_ctx() release the buffers with free_page().
Use free_pages() with the matching order instead.
How do I check if I'm vulnerable to CVE-2026-46068? +
You can use Secably's free Website Scanner to check your website for known vulnerabilities. For infrastructure scanning, use the Port Scanner to identify exposed services that may be affected. Check the vendor advisories linked above for specific patch and version information.