Copyright © 2012 Red Hat, Inc. All rights reserved. Moderate 2026-04-24T00:00:00 kernel: rxrpc: Fix leak of rxgk context in rxgk_verify_response() 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CWE-772

A flaw was found in the Linux kernel's rxrpc component. The `rxgk_verify_response()` function fails to properly clean up the rxgk context it creates, leading to a memory leak. This vulnerability could potentially allow an attacker to cause a Denial of Service (DoS) by exhausting available memory resources.

RxGK response verification leaked context objects on some paths; upstream frees correctly. Red Hat notes this is a memory-leak / stability class defect in rxrpc GSSAPI handling. Red Hat Enterprise Linux 10 Fix deferred kernel Red Hat Enterprise Linux 6 Not affected kernel Red Hat Enterprise Linux 7 Fix deferred kernel Red Hat Enterprise Linux 7 Fix deferred kernel-rt Red Hat Enterprise Linux 8 Fix deferred kernel Red Hat Enterprise Linux 8 Fix deferred kernel-rt Red Hat Enterprise Linux 9 Fix deferred kernel Red Hat Enterprise Linux 9 Fix deferred kernel-rt https://www.cve.org/CVERecord?id=CVE-2026-31632 https://nvd.nist.gov/vuln/detail/CVE-2026-31632 https://lore.kernel.org/linux-cve-announce/2026042454-CVE-2026-31632-4da1@gregkh/T