CVE-2022-50731

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description The Linux kernel contains a flaw related to the akcipher functionality, specifically in handling the setting of a private key. A missing default stub in the set priv key function could lead to a kernel crash when attempting to set a private key on an akcipher implementation that does not support signature generation, such as those used for signature verification only. The issue stemmed from the introduction of default callbacks for sign/verify operations in a previous commit, which did not adequately address the set priv key function. This was observed during the addition of a KAT vector for ECDSA signature to the test manager.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.