CVE-2026-31639 rxrpc: Fix key reference count leak from call->key

🗓️ 24 Apr 2026 14:44:52Reported by LinuxType

CVE-2026-31639: rxrpc frees call->key to fix key reference count leak.

Reporter	Title	Published	Views	Family All 24
ATTACKERKB	CVE-2026-31639	24 Apr 202614:44	–	attackerkb
AstraLinux	Astra Linux - уязвимость в linux-5.10	20 May 202605:53	–	astralinux
CBLMariner	CVE-2026-31639 affecting package kernel for versions less than 6.6.137.1-1	3 May 202620:52	–	cbl_mariner
CNNVD	Linux kernel 安全漏洞	24 Apr 202600:00	–	cnnvd
CVE	CVE-2026-31639	24 Apr 202614:44	–	cve
Debian	[SECURITY] [DSA 6238-1] linux security update	30 Apr 202620:05	–	debian
Debian CVE	CVE-2026-31639	24 Apr 202614:44	–	debiancve
Tenable Nessus	Debian dsa-6238 : ata-modules-6.12.74+deb13+1-armmp-di - security update	30 Apr 202600:00	–	nessus
Tenable Nessus	Linux Distros Unpatched Vulnerability : CVE-2026-31639	25 Apr 202600:00	–	nessus
EUVD	EUVD-2026-25532	24 Apr 202614:44	–	euvd

[
  {
    "product": "Linux",
    "vendor": "Linux",
    "defaultStatus": "unaffected",
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "programFiles": [
      "net/rxrpc/call_object.c"
    ],
    "versions": [
      {
        "version": "f3441d4125fc98995858550a5521b8d7daf0504a",
        "lessThan": "f1a7a3ab0f35f83cf11bba906b9e948cf3788c28",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "f3441d4125fc98995858550a5521b8d7daf0504a",
        "lessThan": "e6b7943c5dc875647499da09bf4d50a8557ab0c3",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "f3441d4125fc98995858550a5521b8d7daf0504a",
        "lessThan": "2e6ef713b1598f6acd7f302fa6b12b6731c89914",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "f3441d4125fc98995858550a5521b8d7daf0504a",
        "lessThan": "978108902ee4ef2b348ff7ec36ad014dc5bc6dc6",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "f3441d4125fc98995858550a5521b8d7daf0504a",
        "lessThan": "d666540d217e8d420544ebdfbadeedd623562733",
        "status": "affected",
        "versionType": "git"
      }
    ]
  },
  {
    "product": "Linux",
    "vendor": "Linux",
    "defaultStatus": "affected",
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "programFiles": [
      "net/rxrpc/call_object.c"
    ],
    "versions": [
      {
        "version": "6.2",
        "status": "affected"
      },
      {
        "version": "0",
        "lessThan": "6.2",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "6.6.135",
        "lessThanOrEqual": "6.6.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "6.12.82",
        "lessThanOrEqual": "6.12.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "6.18.23",
        "lessThanOrEqual": "6.18.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "6.19.13",
        "lessThanOrEqual": "6.19.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "7.0",
        "lessThanOrEqual": "*",
        "status": "unaffected",
        "versionType": "original_commit_for_fix"
      }
    ]
  }
]

Source	Link
git	www.git.kernel.org/stable/c/f1a7a3ab0f35f83cf11bba906b9e948cf3788c28
git	www.git.kernel.org/stable/c/978108902ee4ef2b348ff7ec36ad014dc5bc6dc6
git	www.git.kernel.org/stable/c/2e6ef713b1598f6acd7f302fa6b12b6731c89914
git	www.git.kernel.org/stable/c/e6b7943c5dc875647499da09bf4d50a8557ab0c3
git	www.git.kernel.org/stable/c/d666540d217e8d420544ebdfbadeedd623562733

11 May 2026 22:12Current

EPSS0.00122