Baozeng

**Name of the Vulnerable Software and Affected Versions** Linux kernel versions prior to 4.11.2 **Description** The issue is related to the crypto skcipher init tfm function in crypto/skcipher.c, which relies on a setkey function lacking a key-size check. This allows local users to cause a denial of service via a crafted application, resulting in a NULL pointer dereference. **Recommendations** For Linux kernel versions prior to 4.11.2, update to version 4.11.2 or later to resolve the issue.