Linux · Linux Kernel · CVE-2023-52616
**Name of the Vulnerable Software and Affected Versions**
Linux kernel (affected versions not specified)
**Description**
The issue is related to the initialization of the `mpi ec ctx` structure in the Linux kernel's crypto library. When this structure is initialized, some fields are not cleared, causing a crash when referencing the field after the structure has been released. This error can be triggered, for example, when calculating the Za value for SM2 separately. The memory for `mpi ec ctx` is allocated with the ` GFP ZERO` flag, which initially led to this issue being ignored.
**Recommendations**
At the moment, there is no information about a newer version that contains a fix for this vulnerability.