Description
In the Linux kernel, the following vulnerability has been resolved:

crypto: caam - fix DMA corruption on long hmac keys

When a key longer than block size is supplied, it is copied and then
hashed into the real key. The memory allocated for the copy needs to
be rounded to DMA cache alignment, as otherwise the hashed key may
corrupt neighbouring memory.

The rounding was performed, but never actually used for the allocation.
Fix this by replacing kmemdup with kmalloc for a larger buffer,
followed by memcpy.
Published: 2026-05-01
Score: 7.8 High
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

A flaw in the Linux kernel’s CAAM crypto driver occurs when a key longer than the block size is supplied for HMAC encryption. The driver copies the key into a buffer that was intended to be aligned for DMA, but the allocation did not use the correct rounding, so the hashed key was written to memory that could overlap neighboring addresses. This misaligned write can corrupt kernel memory, which could lead to instability or data loss, and in some scenarios might allow privilege escalation if the attacker can influence the key value (inferred from the nature of the memory corruption).

Affected Systems

The vulnerability exists in the CAAM module of the Linux kernel. Any kernel build that includes this driver is potentially affected. The fix is upstream in the mainline kernel and will be present in future releases once merged; based on the commit references provided, it appears the fix has been committed to the mainline kernel, but the CVE payload does not explicitly state that it has been merged.

Risk and Exploitability

The CVSS score of 7.8 indicates medium‑to‑high severity for uncontrolled memory writes. The EPSS score of < 1% indicates very low exploitation probability, and the issue is not listed in the CISA KEV catalog. The likely attack vector requires the attacker to provide a long HMAC key that reaches the CAAM driver; this generally necessitates local execution or elevated privileges (based on the description, it is inferred that the attacker must have access to influence key values). Based on the description, it is inferred that remote exploitation is unlikely unless an attacker can achieve local code execution or inject data that touches the CAAM interface.

Generated by OpenCVE AI on May 8, 2026 at 22:08 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade the Linux kernel to a release that includes the CAAM allocation fix.
  • If the CAAM driver is not required, disable it by adding `blacklist caam` to /etc/modprobe.d/ or booting with the kernel parameter `caam.disable=1`.
  • In applications that perform HMAC with CAAM, add a check to reject keys longer than the block size, ensuring only properly sized keys reach the driver.

Generated by OpenCVE AI on May 8, 2026 at 22:08 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Fri, 08 May 2026 19:00:00 +0000

Type Values Removed Values Added
Weaknesses NVD-CWE-noinfo
CPEs cpe:2.3:o:linux:linux_kernel:7.0:rc1:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:7.0:rc2:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:7.0:rc3:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:7.0:rc4:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:7.0:rc5:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:7.0:rc6:*:*:*:*:*:*

Sun, 03 May 2026 06:30:00 +0000

Type Values Removed Values Added
Metrics cvssV3_1

{'score': 7.0, 'vector': 'CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H'}

 cvssV3_1

{'score': 7.8, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H'}

Sat, 02 May 2026 00:15:00 +0000

Type Values Removed Values Added
Weaknesses CWE-131
References
Metrics threat_severity

None

 cvssV3_1

{'score': 7.0, 'vector': 'CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H'}

threat_severity

Moderate

Fri, 01 May 2026 14:45:00 +0000

Type Values Removed Values Added
Description In the Linux kernel, the following vulnerability has been resolved: crypto: caam - fix DMA corruption on long hmac keys When a key longer than block size is supplied, it is copied and then hashed into the real key. The memory allocated for the copy needs to be rounded to DMA cache alignment, as otherwise the hashed key may corrupt neighbouring memory. The rounding was performed, but never actually used for the allocation. Fix this by replacing kmemdup with kmalloc for a larger buffer, followed by memcpy.
Title crypto: caam - fix DMA corruption on long hmac keys
First Time appeared Linux
Linux linux Kernel
CPEs cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Vendors & Products Linux
Linux linux Kernel
References

Subscriptions

Linux Linux Kernel
cve-icon MITRE

Status: PUBLISHED

Assigner: Linux

Published:

Updated: 2026-05-11T22:16:37.976Z

Reserved: 2026-05-01T14:12:55.979Z

Link: CVE-2026-43044

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Analyzed

Published: 2026-05-01T15:16:50.703

Modified: 2026-05-08T18:58:08.020

Link: CVE-2026-43044

cve-icon Redhat

Severity : Moderate

Publid Date: 2026-05-01T00:00:00Z

Links: CVE-2026-43044 - Bugzilla

cve-icon OpenCVE Enrichment

Updated: 2026-05-08T22:15:18Z

Weaknesses