Lucene search
416baaa9-dc9f-4396-8d5f-8c081fb06d67NVD:CVE-2024-43815HistoryAug 17, 2024 - 10:15 a.m.
CVE-2024-43815
2024-08-1710:15:07
416baaa9-dc9f-4396-8d5f-8c081fb06d67
web.nvd.nist.gov
2
linux kernel
cve-2024-43815
vulnerability
crypto
mxs-dcp
stack memory
aes
hardware key slots
payload
main memory
EPSS
0
Percentile
9.5%
In the Linux kernel, the following vulnerability has been resolved:
crypto: mxs-dcp - Ensure payload is zero when using key slot
We could leak stack memory through the payload field when running
AES with a key from one of the hardware’s key slots. Fix this by
ensuring the payload field is set to 0 in such cases.
This does not affect the common use case when the key is supplied
from main memory via the descriptor payload.
Related
ubuntucve
ubuntucve
CVE-2024-43815
2024-08-17 00:00:00
vulnrichment
vulnrichment
CVE-2024-43815 crypto: mxs-dcp - Ensure payload is zero when using key slot
2024-08-17 09:21:38
cvelist
cvelist
CVE-2024-43815 crypto: mxs-dcp - Ensure payload is zero when using key slot
2024-08-17 09:21:38
cve
cve
CVE-2024-43815
2024-08-17 10:15:07
redhatcve
redhatcve
CVE-2024-43815
2024-08-19 13:45:01
debiancve
debiancve
CVE-2024-43815
2024-08-17 10:15:07