CVE-2026-46019

medium Red Hat
Published: May 27, 2026 (44 days ago)
Last Modified: May 27, 2026
Vendor: Red Hat
Source: REDHAT

Description

A flaw was found in the Linux kernel's `atmel-aes` cryptographic driver. The `atmel_aes_buff_cleanup` function incorrectly deallocates memory, leading to a memory leak. Specifically, while `atmel_aes_buff_init()` allocates four pages of memory, `atmel_aes_buff_cleanup()` only frees one page, resulting in three pages of memory being leaked. This issue could potentially lead to a denial of service due to resource exhaustion over time.

CWE

CWE-763

Affected Products

Red Hat Enterprise Linux 10Red Hat Enterprise Linux 6Red Hat Enterprise Linux 7Red Hat Enterprise Linux 8Red Hat Enterprise Linux 9

References