Linux Kernel MAY_BACKLOG Request Handling Fix

Publication date: 2026-05-19

Last updated on: 2026-06-26

Assigner: kernel.org

Description

In the Linux kernel, the following vulnerability has been resolved: crypto: pcrypt - Fix handling of MAY_BACKLOG requests MAY_BACKLOG requests can return EBUSY. Handle them by checking for that value and filtering out EINPROGRESS notifications.

CVSS Scores

EPSS Scores

Probability:
Percentile:

Meta Information

Published

2026-05-19

Last Modified

2026-06-26

Generated

2026-06-30

AI Q&A

2026-05-19

EPSS Evaluated

2026-06-28

NVD

CVE-2026-43493

EUVD

EUVD-2026-30884

Affected Vendors & Products

Vendor	Product	Version / Range
linux	linux_kernel	From 6.7 (inc) to 6.12.86 (exc)
linux	linux_kernel	From 5.16 (inc) to 6.1.175 (exc)
linux	linux_kernel	From 5.11 (inc) to 5.15.209 (exc)
linux	linux_kernel	From 6.2 (inc) to 6.6.140 (exc)
linux	linux_kernel	From 2.6.34 (inc) to 5.10.258 (exc)
linux	linux_kernel	From 6.13 (inc) to 6.18.27 (exc)
linux	linux_kernel	From 6.19 (inc) to 7.0.4 (exc)

Helpful Resources

Exploitability

CWE

KEV

CWE ID	Description
CWE-UNKNOWN

Attack-Flow Graph

Executive Summary

This vulnerability is related to the Linux kernel's crypto subsystem, specifically the pcrypt module. It involves improper handling of MAY_BACKLOG requests, which can return an EBUSY error. The fix involves correctly handling this error by checking for EBUSY and filtering out EINPROGRESS notifications.

Impact Analysis

This vulnerability relates to the handling of MAY_BACKLOG requests in the Linux kernel's crypto pcrypt module. Improper handling could cause MAY_BACKLOG requests to return EBUSY errors and mishandle EINPROGRESS notifications. This could potentially affect the stability or performance of cryptographic operations in the kernel.

Hi! I’m here to help you understand CVE-2026-43493. Ask me anything about the vulnerability, its impact, or mitigation strategies.

0/70