Buffer Size Check Flaw in Linux Kernel's Crypto Algorithm Handling
CVE-2026-43077

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 6 May 2026

What is CVE-2026-43077?

A vulnerability in the Linux kernel's crypto subsystem was identified, which involves a flaw in the minimum receive buffer size check during the decryption process. The issue arises due to failure in considering the tag size, potentially leading to improper decryption and related security risks. The resolution includes enhancements to ensure that the minimum receive buffer size accounts for additional necessary lengths, thereby improving the overall security posture of the kernel's cryptography functionalities.

Affected Version(s)

Linux d887c52d6ae43aeebd249b5f2f1333e60236aa60 < 74a66fdb5282d89e348b00c42cfca3a936946d94

Linux d887c52d6ae43aeebd249b5f2f1333e60236aa60

Linux d887c52d6ae43aeebd249b5f2f1333e60236aa60 < 1c76b5675119f694458293a2a81f40731c69bd32

References

https://git.kernel.org/stable/c/74a66fdb5282d89e348b00c42...

https://git.kernel.org/stable/c/fd427dd84f224309afbcc2cb6...

https://git.kernel.org/stable/c/1c76b5675119f694458293a2a...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 6, 2026
Vulnerability Reserved
May 1, 2026

CVE-2026-43077 Data

JSON