Linux Kernel Vulnerability in EIP93 Hash Algorithm Implementation
CVE-2026-53302

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 26 June 2026

What is CVE-2026-53302?

A vulnerability in the Linux Kernel's implementation of the EIP93 hash algorithms occurs when the system attempts to allocate a cryptographic transform. The request can result in a kernel panic due to the mishandling of NULL pointers caused by a failed cryptographic operation initialized incorrectly. This flaw is linked to the exclusion of asynchronous algorithms during the allocation process, which leads to an incomplete setup of the cryptographic context. The fix involves modifying the allocation call to permit async algorithms, ensuring smoother performance and preventing potential application crashes.

Affected Version(s)

Linux 9739f5f93b7806a684713ba42e6ed2d1df7c8100

Linux 9739f5f93b7806a684713ba42e6ed2d1df7c8100 < 3ba3b02f897b14e34977e1886d95ffe64d907204

References

https://git.kernel.org/stable/c/fc9310d79fdb117b369a01eb0...

https://git.kernel.org/stable/c/ec226d3e58bb9f0e26a773460...

https://git.kernel.org/stable/c/3ba3b02f897b14e34977e1886...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 26, 2026
Vulnerability Reserved
Jun 9, 2026

CVE-2026-53302 Data

JSON