CVE-2026-43077
Analyzed Analyzed - Analysis Complete
crypto: algif_aead Decryption RX Size Check Bypass

Publication date: 2026-05-06

Last updated on: 2026-05-20

Assigner: kernel.org

Description
In the Linux kernel, the following vulnerability has been resolved: crypto: algif_aead - Fix minimum RX size check for decryption The check for the minimum receive buffer size did not take the tag size into account during decryption. Fix this by adding the required extra length.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2026-05-06
Last Modified
2026-05-20
Generated
2026-06-16
AI Q&A
2026-05-06
EPSS Evaluated
2026-06-15
NVD
CVE-2026-43077
EUVD
EUVD-2026-27564
Affected Vendors & Products
Showing 15 associated CPEs
Vendor Product Version / Range
linux linux_kernel 4.14
linux linux_kernel 7.0
linux linux_kernel 7.0
linux linux_kernel 7.0
linux linux_kernel 7.0
linux linux_kernel 7.0
linux linux_kernel 7.0
linux linux_kernel 7.0
linux linux_kernel From 6.13 (inc) to 6.18.24 (exc)
linux linux_kernel From 6.19 (inc) to 6.19.14 (exc)
linux linux_kernel From 6.7 (inc) to 6.12.83 (exc)
linux linux_kernel From 6.2 (inc) to 6.6.136 (exc)
linux linux_kernel From 5.11 (inc) to 5.15.204 (exc)
linux linux_kernel From 5.16 (inc) to 6.1.170 (exc)
linux linux_kernel From 4.14.1 (inc) to 5.10.254 (exc)
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-UNKNOWN
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Executive Summary

This vulnerability is in the Linux kernel's crypto subsystem, specifically in the algif_aead module responsible for authenticated encryption with associated data (AEAD). The issue was that during decryption, the check for the minimum receive buffer size did not account for the tag size, which is an essential part of the encrypted data used for authentication. This could lead to improper handling of the buffer size. The vulnerability was fixed by adding the required extra length to the minimum receive buffer size check.

Impact Analysis

Because the minimum receive buffer size check during decryption did not consider the tag size, it could potentially lead to incorrect processing of encrypted data. This might cause decryption failures or security issues related to data integrity verification. However, specific impacts such as data leakage or system compromise are not detailed in the provided information.

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2026-43077. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart