In the Linux kernel, the following vulnerability has been resolved:

crypto: ccree - fix a memory leak in cc_mac_digest()

Add cc_unmap_result() if cc_map_hash_request_final()
fails to prevent potential memory leak.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

No EPSS score available.

Key SSVC decision points have not yet been added.

Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).

Vendor Product Default status Versions
Linux Linux unaffected
Version Status Constraints
63893811b0fcb52f6eaf9811cc08bddd46f81c3e affected < 3061c9bfb3f5b3522ab174e2fa7473b24422d1c6
63893811b0fcb52f6eaf9811cc08bddd46f81c3e affected < 22f1dd4ca3bfe77db52cc7df3cc353dc114aab8b
63893811b0fcb52f6eaf9811cc08bddd46f81c3e affected < 910f335786a0a0f0b46c3c8c19a13d25cb4454b6
63893811b0fcb52f6eaf9811cc08bddd46f81c3e affected < 502440c235fe34cee02b24d7f893841f7565b3bc
63893811b0fcb52f6eaf9811cc08bddd46f81c3e affected < 02c64052fad03699b9c6d1df2f9b444d17e4ac50
Linux Linux affected
Version Status Constraints
4.17 affected
0 unaffected < 4.17
6.6.140 unaffected ≤ 6.6.*
6.12.86 unaffected ≤ 6.12.*
6.18.27 unaffected ≤ 6.18.*
7.0.4 unaffected ≤ 7.0.*
7.1-rc1 unaffected ≤ *

No data.

No data.

OpenCVE Enrichment is a feature of OpenCVE that uses AI to automatically link vendors and products to CVEs. Learn more on GitHub.

Vendors Products
Linux Subscribe
Linux Kernel Subscribe

Project Subscriptions

Vendors Products
Linux Subscribe
Linux Kernel Subscribe
Advisories

No advisories yet.

Fixes

Solution

No solution given by the vendor.

Workaround

No workaround given by the vendor.

References
Link Providers
https://git.kernel.org/stable/c/02c64052fad03699b9c6d1df2f9b444d17e4ac50 cve-icon cve-icon
https://git.kernel.org/stable/c/22f1dd4ca3bfe77db52cc7df3cc353dc114aab8b cve-icon cve-icon
https://git.kernel.org/stable/c/3061c9bfb3f5b3522ab174e2fa7473b24422d1c6 cve-icon cve-icon
https://git.kernel.org/stable/c/502440c235fe34cee02b24d7f893841f7565b3bc cve-icon cve-icon
https://git.kernel.org/stable/c/910f335786a0a0f0b46c3c8c19a13d25cb4454b6 cve-icon cve-icon
https://lore.kernel.org/linux-cve-announce/2026052736-CVE-2026-45986-5c92@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2026-45986 cve-icon
https://www.cve.org/CVERecord?id=CVE-2026-45986 cve-icon
History

Thu, 28 May 2026 00:15:00 +0000

Type Values Removed Values Added
Weaknesses CWE-772
References

Wed, 27 May 2026 21:00:00 +0000

Type Values Removed Values Added
Weaknesses CWE-401

Wed, 27 May 2026 14:15:00 +0000

Type Values Removed Values Added
Description In the Linux kernel, the following vulnerability has been resolved: crypto: ccree - fix a memory leak in cc_mac_digest() Add cc_unmap_result() if cc_map_hash_request_final() fails to prevent potential memory leak.
Title crypto: ccree - fix a memory leak in cc_mac_digest()
First Time appeared Linux
Linux linux Kernel
CPEs cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Vendors & Products Linux
Linux linux Kernel
References

Projects

Sign in to view the affected projects.

cve-icon MITRE

Status: PUBLISHED

Assigner: Linux

Published:

Updated: 2026-05-27T12:55:35.838Z

Reserved: 2026-05-13T15:03:33.090Z

Link: CVE-2026-45986

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Awaiting Analysis

Published: 2026-05-27T14:17:15.963

Modified: 2026-05-27T14:48:03.013

Link: CVE-2026-45986

cve-icon Redhat

Severity :

Publid Date: 2026-05-27T00:00:00Z

Links: CVE-2026-45986 - Bugzilla

cve-icon OpenCVE Enrichment

Updated: 2026-05-28T01:45:03Z

Weaknesses