Home
HIGH: 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HDefault status
unaffected
72548b093ee38a6d4f2a19e6ef1948ae05c181f7 (git) before fafe0fa2995a0f7073c1c358d7d3145bcc9aedd8
affected
72548b093ee38a6d4f2a19e6ef1948ae05c181f7 (git) before ce42ee423e58dffa5ec03524054c9d8bfd4f6237
affected
72548b093ee38a6d4f2a19e6ef1948ae05c181f7 (git) before a664bf3d603dc3bdcf9ae47cc21e0daec706d7a5
affected
Default status
affected
4.14
affected
Any version before 4.14
unaffected
6.18.22 (semver)
unaffected
6.19.12 (semver)
unaffected
7.0 (original_commit_for_fix)
unaffected
Description
In the Linux kernel, the following vulnerability has been resolved: crypto: algif_aead - Revert to operating out-of-place This mostly reverts commit 72548b093ee3 except for the copying of the associated data. There is no benefit in operating in-place in algif_aead since the source and destination come from different mappings. Get rid of all the complexity added for in-place operation and just copy the AD directly.
Product status
72548b093ee38a6d4f2a19e6ef1948ae05c181f7 (git) before fafe0fa2995a0f7073c1c358d7d3145bcc9aedd8
72548b093ee38a6d4f2a19e6ef1948ae05c181f7 (git) before ce42ee423e58dffa5ec03524054c9d8bfd4f6237
72548b093ee38a6d4f2a19e6ef1948ae05c181f7 (git) before a664bf3d603dc3bdcf9ae47cc21e0daec706d7a5
4.14
Any version before 4.14
6.18.22 (semver)
6.19.12 (semver)
7.0 (original_commit_for_fix)
References
git.kernel.org/...c/fafe0fa2995a0f7073c1c358d7d3145bcc9aedd8
git.kernel.org/...c/ce42ee423e58dffa5ec03524054c9d8bfd4f6237
git.kernel.org/...c/a664bf3d603dc3bdcf9ae47cc21e0daec706d7a5