{"id":"CVE-2026-46027","summary":"net/smc: avoid early lgr access in smc_clc_wait_msg","details":"In the Linux kernel, the following vulnerability has been resolved:\n\nnet/smc: avoid early lgr access in smc_clc_wait_msg\n\nA CLC decline can be received while the handshake is still in an early\nstage, before the connection has been associated with a link group.\n\nThe decline handling in smc_clc_wait_msg() updates link-group level sync\nstate for first-contact declines, but that state only exists after link\ngroup setup has completed. Guard the link-group update accordingly and\nkeep the per-socket peer diagnosis handling unchanged.\n\nThis preserves the existing sync_err handling for established link-group\ncontexts and avoids touching link-group state before it is available.","modified":"2026-06-18T03:56:03.050267329Z","published":"2026-05-27T12:56:35.628Z","related":["openSUSE-SU-2026:10954-1"],"database_specific":{"osv_generated_from":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/46xxx/CVE-2026-46027.json","cna_assigner":"Linux"},"references":[{"type":"WEB","url":"https://git.kernel.org/stable/c/22546729b96fc873b23065dc49e3d73c45cfb874"},{"type":"WEB","url":"https://git.kernel.org/stable/c/257cdf0c5ced9c0fba8aba501d94b0a5fcef2086"},{"type":"WEB","url":"https://git.kernel.org/stable/c/5a8db80f721deee8e916c2cfdee78decda02ce4f"},{"type":"WEB","url":"https://git.kernel.org/stable/c/5eedbfd82c2884e0010fdfb3c9446a6ebcadb691"},{"type":"WEB","url":"https://git.kernel.org/stable/c/6180a296ca65b08a81914805cbc0f78da5f10a1f"},{"type":"WEB","url":"https://git.kernel.org/stable/c/83bcf9228b0501694fb2589ed1d142855a2887f2"},{"type":"WEB","url":"https://git.kernel.org/stable/c/ea0b5d0fe96356dce38f98375a57c52a04e13712"},{"type":"WEB","url":"https://git.kernel.org/stable/c/f0858e1d5624bb120b198f2a8528f97a9b0ae069"},{"type":"ADVISORY","url":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/46xxx/CVE-2026-46027.json"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2026-46027"},{"type":"PACKAGE","url":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","events":[{"introduced":"0cfdd8f92cac01afbb12e4500514036a2b78756b"},{"fixed":"257cdf0c5ced9c0fba8aba501d94b0a5fcef2086"},{"fixed":"22546729b96fc873b23065dc49e3d73c45cfb874"},{"fixed":"5eedbfd82c2884e0010fdfb3c9446a6ebcadb691"},{"fixed":"f0858e1d5624bb120b198f2a8528f97a9b0ae069"},{"fixed":"6180a296ca65b08a81914805cbc0f78da5f10a1f"},{"fixed":"ea0b5d0fe96356dce38f98375a57c52a04e13712"},{"fixed":"83bcf9228b0501694fb2589ed1d142855a2887f2"},{"fixed":"5a8db80f721deee8e916c2cfdee78decda02ce4f"}]}],"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2026-46027.json"}},{"package":{"name":"Kernel","ecosystem":"Linux"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"4.11.0"},{"fixed":"5.10.258"}]},{"type":"ECOSYSTEM","events":[{"introduced":"5.11.0"},{"fixed":"5.15.209"}]},{"type":"ECOSYSTEM","events":[{"introduced":"5.16.0"},{"fixed":"6.1.175"}]},{"type":"ECOSYSTEM","events":[{"introduced":"6.2.0"},{"fixed":"6.6.140"}]},{"type":"ECOSYSTEM","events":[{"introduced":"6.7.0"},{"fixed":"6.12.86"}]},{"type":"ECOSYSTEM","events":[{"introduced":"6.13.0"},{"fixed":"6.18.27"}]},{"type":"ECOSYSTEM","events":[{"introduced":"6.19.0"},{"fixed":"7.0.4"}]}],"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2026-46027.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}]}