PT-2026-38981 · Linux · Linux Kernel
Published
2026-05-08
·
Updated
2026-05-14
·
CVE-2026-43330
CVSS v3.1
7.8
High
| Vector | AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
Linux kernel (affected versions not specified)
Description
An overflow occurs in the crypto caam component when a key longer than the block size is supplied. The system copies and hashes the key into the real key, but the memory allocated for the copy must be rounded to DMA cache alignment to prevent corruption of neighboring memory. The use of the
kmemdup() function causes the system to read more bytes than intended (specifically aligned len minus keylen) from the source buffer.Recommendations
Replace the
kmemdup() function with kmalloc() followed by memcpy() to ensure correct memory handling.Fix
Memory Corruption
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Linux Kernel