CVE-2026-23060
Published: Feb 4, 2026
Modified: May 11, 2026
Description
In the Linux kernel, the following vulnerability has been resolved: crypto: authencesn - reject too-short AAD (assoclen<8) to match ESP/ESN spec authencesn assumes an ESP/ESN-formatted AAD. When assoclen is shorter than the minimum expected length, crypto_authenc_esn_decrypt() can advance past the end of the destination scatterlist and trigger a NULL pointer dereference in scatterwalk_map_and_copy(), leading to a kernel panic (DoS). Add a minimum AAD length check to fail fast on invalid inputs.
| Vendor | Product | Versions |
|---|---|---|
Linux | Linux | affected 104880a6b470958ddc30e139c41aa4f6ed3a5234 - < df22c9a65e9a9daa368a72fed596af9d7d5876bbaffected 104880a6b470958ddc30e139c41aa4f6ed3a5234 - < fee86edf5803f1d1f19e3b4f2dacac241bddfa48affected 104880a6b470958ddc30e139c41aa4f6ed3a5234 - < 767e8349f7e929b7dd95c08f0b4cb353459b365eaffected 104880a6b470958ddc30e139c41aa4f6ed3a5234 - < b0a9609283a5c852addb513dafa655c61eebc1efaffected 104880a6b470958ddc30e139c41aa4f6ed3a5234 - < 161bdc90fce25bd9890adc67fa1c8563a7acbf40+2 more versions |
Linux | Linux | affected 4.3unaffected 0 - < 4.3unaffected 5.10.249 - <= 5.10.*unaffected 5.15.199 - <= 5.15.*unaffected 6.1.162 - <= 6.1.*+4 more versions |
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now