CVE-2026-43033
Published: May 1, 2026
Modified: May 11, 2026
CVSS v3.1
7.8
Description
In the Linux kernel, the following vulnerability has been resolved: crypto: authencesn - Do not place hiseq at end of dst for out-of-place decryption When decrypting data that is not in-place (src != dst), there is no need to save the high-order sequence bits in dst as it could simply be re-copied from the source. However, the data to be hashed need to be rearranged accordingly. Thanks,
| Vendor | Product | Versions |
|---|---|---|
Linux | Linux | affected 104880a6b470958ddc30e139c41aa4f6ed3a5234 - < 8c62f618576519dbed6816fafc623ce592953025affected 104880a6b470958ddc30e139c41aa4f6ed3a5234 - < d589abd8b019b07075fda255ceab8c8e950cdb3faffected 104880a6b470958ddc30e139c41aa4f6ed3a5234 - < 5466e7d0cd9e4f9cef9d8f18f18b60e7bc1c77e5affected 104880a6b470958ddc30e139c41aa4f6ed3a5234 - < d0c4ff6812386880f30bc64c2921299cc4d7b47faffected 104880a6b470958ddc30e139c41aa4f6ed3a5234 - < 89fe118b6470119b20c04afc36e45b81a69ea11f+3 more versions |
Linux | Linux | affected 4.3unaffected 0 - < 4.3unaffected 5.10.254 - <= 5.10.*unaffected 5.15.204 - <= 5.15.*unaffected 6.1.170 - <= 6.1.*+5 more versions |
CVSS v3.1 Details
CVSS v3.1 Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now