VDB

DEBIAN-CVE-2026-43077

DEBIAN-CVE-2026-43077 PUBLISHED

In the Linux kernel, the following vulnerability has been resolved: crypto: algif_aead - Fix minimum RX size check for decryption The check for the minimum receive buffer size did not take the tag size into account during decryption. Fix this by adding the required extra length.

Affected Products

VendorProductVersions
Debian:12linux6.1.162-1, 6.1.164-1, 6.1.27-1
Debian:14linux0, 6.18, 6.18
Debian:13linux0, 6.12.38-1, 6.12.41-1
Debian:11linux6.1.38-4, 6.1.4-1, 6.1.52-1

Timeline

  • May 6, 2026 CVE Published
  • May 7, 2026 CVE Updated
Open in Interactive Console →
$ Console Community · 100/wk Open console ›