Linux Kernel RXRPC Memleak in rxrpc_preparse_xdr_yfs_rxgk
CVE-2026-31643 Published on April 24, 2026
rxrpc: Fix key parsing memleak
In the Linux kernel, the following vulnerability has been resolved:
rxrpc: Fix key parsing memleak
In rxrpc_preparse_xdr_yfs_rxgk(), the memory attached to token->rxgk can be
leaked in a few error paths after it's allocated.
Fix this by freeing it in the "reject_token:" case.
Products Associated with CVE-2026-31643
Want to know whenever a new CVE is published for Linux Kernel? stack.watch will email you.
Affected Versions
Linux:- Version 0ca100ff4df64f5d0f6c1dd5080c3e096786bea6 and below d5f76f812d2c0ea6dd651b0586be49e85ecca085 is affected.
- Version 0ca100ff4df64f5d0f6c1dd5080c3e096786bea6 and below 01f51318feb626deee1d0c8a190198cd7857d599 is affected.
- Version 0ca100ff4df64f5d0f6c1dd5080c3e096786bea6 and below b555912b9b21075e8298015f888ffe3ff60b1a97 is affected.
- Version 6.16 is affected.
- Before 6.16 is unaffected.
- Version 6.18.23, <= 6.18.* is unaffected.
- Version 6.19.13, <= 6.19.* is unaffected.
- Version 7.0, <= * is unaffected.
Exploit Probability
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.