Lucene search
K

68 matches found

IBM Security Bulletins
IBM Security Bulletins
added 3 days ago13 views

Security Bulletin: IBM Storage Scale System: Vulnerability in Linux kernel crypto subsystem could allow local privilege escalation (CVE-2026-31431)

Summary IBM Storage Scale Systems is affected by a security vulnerability identified in the Linux kernel's cryptographic interface CVE-2026-31431 that could allow a local user with low privileges to escalate to root privileges. The vulnerability has a CVSS score of 7.8 High and requires local...

7.8CVSS6.6AI score0.96267EPSS
Exploits230Affected Software1
EUVD
EUVD
added 2026/06/24 6:32 p.m.3 views

EUVD-2026-38884

In the Linux kernel, the following vulnerability has been resolved: crypto: ccp - copy IV using skcipher ivsize AFALG rfc3686-ctr-aes-ccp requests pass an 8-byte IV to the driver. ccpaescomplete restores AESBLOCKSIZE bytes into the caller's IV buffer while RFC3686 skciphers expose an 8-byte IV, s...

5.7AI score0.00132EPSS
Exploits0References9
Positive Technologies
Positive Technologies
added 2026/06/24 12:0 a.m.6 views

PT-2026-51866

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the af alg cryptography module of the Linux kernel. An arithmetic overflow occurs when processing associated data lengths during the transmit buffer size check. A remote...

9.8CVSS6.2AI score0.0049EPSS
Exploits0References399
Positive Technologies
Positive Technologies
added 2026/06/24 12:0 a.m.6 views

PT-2026-51910

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the cryptographic coprocessor CCP driver. When processing AF ALG rfc3686-ctr-aes-ccp requests, the ccp aes complete function restores more data than the allocated buffer...

9.8CVSS6AI score0.0049EPSS
Exploits0References400
Cvelist
Cvelist
added 2026/05/27 12:56 p.m.42 views

CVE-2026-46033 crypto: authencesn - reject short ahash digests during instance creation

In the Linux kernel, the following vulnerability has been resolved: crypto: authencesn - reject short ahash digests during instance creation authencesn requires either a zero authsize or an authsize of at least 4 bytes because the ESN encrypt/decrypt paths always move 4 bytes of high-order sequen...

0.00129EPSS
Exploits0References8
CVE
CVE
added 2026/05/27 12:56 p.m.29 views

CVE-2026-46019

CVE-2026-46019 concerns the Linux kernel crypto/atmel-aes path. The issue: atmel_aes_buff_init() allocates 4 pages (ATMEL_AES_BUFFER_ORDER) but atmel_aes_buff_cleanup() frees only the first page via free_page(), leaking 3 pages. Resolution: use free_pages() with ATMEL_AES_BUFFER_ORDER to properly...

5.5CVSS5.8AI score0.00163EPSS
Exploits0References8Affected Software1
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.10 views

Astra Linux – Vulnerability found in Linux 6.1, Linux 5.10, and Linux 5.15

In the Linux kernel, the following vulnerability has been resolved: crypto: hisilicon/qm – injects an error before stopping the queue. The master OOO cannot be completely closed when the accelerator core reports a memory error. Therefore, the driver needs to inject the qm error to close the maste...

7.8CVSS6.6AI score0.00259EPSS
Exploits0References2
OSV
OSV
added 2026/05/19 10:44 a.m.1 views

CVE-2026-43492 lib/crypto: mpi: Fix integer underflow in mpi_read_raw_from_sgl()

In the Linux kernel, the following vulnerability has been resolved: lib/crypto: mpi: Fix integer underflow in mpireadrawfromsgl Yiming reports an integer underflow in mpireadrawfromsgl when subtracting "lzeros" from the unsigned "nbytes". For this to happen, the scatterlist "sgl" needs to occupy...

5.5CVSS5.9AI score0.00149EPSS
Exploits0References11
Schneier on Security
Schneier on Security
added 2026/05/12 11:6 a.m.16 views

Copy.Fail Linux Vulnerability

This is the worst Linux vulnerability in years. TL;DR copy.fail is a Linux kernel local privilege escalation, not a browser or clipboard attack. Disclosed by Theori on 29 April 2026 with a working PoC. It abuses the kernel crypto API AFALG sockets plus splice to write four bytes at a time straigh...

5.9AI score
Exploits0
CVE
CVE
added 2026/05/08 1:31 p.m.21 views

CVE-2026-43330

CVE-2026-43330 relates to the Linux kernel crypto/caam path, where an overflow occurs when a long HMAC key (longer than the block size) is copied for hashing. The vulnerability arises because the copy’s allocated memory is aligned for DMA, and the original kmemdup path could read beyond the key b...

7.8CVSS5.8AI score0.00129EPSS
Exploits0References5Affected Software1
Cvelist
Cvelist
added 2026/05/08 1:31 p.m.36 views

CVE-2026-43330 crypto: caam - fix overflow on long hmac keys

In the Linux kernel, the following vulnerability has been resolved: crypto: caam - fix overflow on long hmac keys When a key longer than block size is supplied, it is copied and then hashed into the real key. The memory allocated for the copy needs to be rounded to DMA cache alignment, as otherwi...

7.8CVSS0.00129EPSS
Exploits0References5
GithubExploit
GithubExploit
added 2026/05/07 4:31 p.m.118 views

Exploit for Incorrect Resource Transfer Between Spheres in Linux Linux_Kernel

CVE-2026-31431 "Copy Fail" — Technical Deep Dive Severity:...

7.8CVSS6.4AI score0.96267EPSS
Exploits230
Tenable Nessus
Tenable Nessus
added 2026/05/07 12:0 a.m.17 views

CentOS 9 : kernel-5.14.0-701.el9

The remote CentOS Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the kernel-5.14.0-701.el9 build changelog. - In the Linux kernel, the following vulnerability has been resolved: crypto: afalg - limit RX SG extraction by receive buffer budget Mak...

9.8CVSS6.2AI score0.96267EPSS
Exploits230References6
Oracle linux
Oracle linux
added 2026/05/05 12:0 a.m.23 views

kernel security update

5.14.0-611.54.1 - Disable UKI signing Orabug: 36571828 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug:...

9.8CVSS6.2AI score0.96267EPSS
Exploits230
Microsoft Secure
Microsoft Secure
added 2026/05/02 3:6 a.m.15 views

CVE-2026-31431: Copy Fail vulnerability enables Linux root privilege escalation across cloud environments

In this article 1. Vulnerability details 2. Mitigation and protection guidance 3. Microsoft Defender XDR detections 4. References 5. Learn more Microsoft Defender is investigating a high-severity local privilege escalation vulnerability CVE-2026-31431 affecting multiple major Linux distributions...

7.8CVSS6.5AI score0.96267EPSS
Exploits230
Microsoft Secure
Microsoft Secure
added 2026/05/02 3:6 a.m.8 views

CVE-2026-31431: Copy Fail vulnerability enables Linux root privilege escalation across cloud environments

In this article 1. Vulnerability details 2. Mitigation and protection guidance 3. Microsoft Defender XDR detections 4. References 5. Learn more Microsoft Defender is investigating a high-severity local privilege escalation vulnerability CVE-2026-31431 affecting multiple major Linux distributions...

7.8CVSS6.5AI score0.96267EPSS
Exploits230
SUSE CVE
SUSE CVE
added 2026/05/02 1:25 a.m.14 views

SUSE CVE-2026-31719

In the Linux kernel, the following vulnerability has been resolved: crypto: krb5enc - fix async decrypt skipping hash verification krb5encdispatchdecrypt sets req-base.complete as the skcipher callback, which is the caller's own completion handler. When the skcipher completes asynchronously, this...

7.5CVSS5.7AI score0.00294EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2026/05/01 8:39 p.m.8 views

CVE-2026-31719

A flaw was found in the krb5enc module of the Linux kernel's crypto subsystem. When performing asynchronous decryption, the krb5encdispatchdecrypt function incorrectly bypasses the integrity verification hash check. This issue occurs because the skcipher completion handler signals completion...

7.5CVSS5.8AI score0.00294EPSS
Exploits0References4
CVE
CVE
added 2026/05/01 2:15 p.m.13 views

CVE-2026-43044

The CVE-2026-43044 issue affects the Linux kernel's crypto: caam module. When processing HMAC keys longer than the block size, the copied key’s memory was not properly aligned for DMA, risking corruption of adjacent memory. The vulnerability’s root cause was the allocation of a copy that relied o...

7.8CVSS5.8AI score0.0012EPSS
Exploits0References5Affected Software1
GithubExploit
GithubExploit
added 2026/05/01 12:59 p.m.207 views

Exploit for CVE-2026-31431

Copy Fail — CVE-2026-31431 CVE-2026-31431 Copy Fail is a lo...

7.8CVSS6AI score0.96267EPSS
Exploits230
Rows per page
Query Builder