Description
In the Linux kernel, the following vulnerability has been resolved:

crypto: atmel-tdes - fix DMA sync direction

Before DMA output is consumed by the CPU, ->dma_addr_out must be synced
with dma_sync_single_for_cpu() instead of dma_sync_single_for_device().
Using the wrong direction can return stale cache data on non-coherent
platforms.
Published: 2026-05-27
Score: n/a
EPSS: n/a
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

The bug in the atmel-tdes driver causes the kernel to synchronize DMA output using the direction intended for a device, rather than synchronizing it for the CPU. On platforms where memory is not coherently shared between the CPU and devices, this misuse makes the CPU read stale cache entries after a DMA write. The consequence is that the processor may observe outdated or incorrect data, potentially exposing sensitive information or causing corrupted cryptographic results. This is not a remote code execution flaw but can lead to data corruption or inadvertent data disclosure.

Affected Systems

All Linux kernel builds that include the atmel-tdes crypto driver and run on non‑coherent memory platforms are affected. The CVE identifies the kernel as the product but does not list specific version ranges; therefore the vulnerability applies to all kernel releases prior to the release of the fix. The vendor for the affected product is Linux, product name Linux kernel.

Risk and Exploitability

The severity of the issue is not quantified by a CVSS score, and no EPSS data is available, but the bug can be leveraged by an attacker who can induce the kernel to perform a DMA write via the vulnerable driver. Compromise is limited to platforms that use non‑coherent DMA, which narrows the attack surface. Attackers could extract stale data from the cache or observe corrupted cryptographic output, potentially facilitating further attacks. The bug is not listed in the CISA KEV catalog, suggesting no sign of widespread exploitation at this time.

Generated by OpenCVE AI on May 27, 2026 at 18:02 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade the Linux kernel to a release that contains the atmel-tdes DMA sync direction fix. The patch is available in the latest mainline kernel and can be applied to older kernels if necessary.
  • If upgrading immediately is not feasible, obtain the patch from the referenced kernel commits and apply it manually to the atmel-tdes driver source in the running kernel source tree.
  • Verify that the system is running on a coherently shared memory platform; if the hardware requires non‑coherent DMA, disable or restrict the use of the atmel-tdes driver until the kernel is updated or the patch is applied.

Generated by OpenCVE AI on May 27, 2026 at 18:02 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Wed, 27 May 2026 18:30:00 +0000

Type Values Removed Values Added
Weaknesses CWE-200

Wed, 27 May 2026 14:15:00 +0000

Type Values Removed Values Added
Description In the Linux kernel, the following vulnerability has been resolved: crypto: atmel-tdes - fix DMA sync direction Before DMA output is consumed by the CPU, ->dma_addr_out must be synced with dma_sync_single_for_cpu() instead of dma_sync_single_for_device(). Using the wrong direction can return stale cache data on non-coherent platforms.
Title crypto: atmel-tdes - fix DMA sync direction
First Time appeared Linux
Linux linux Kernel
CPEs cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Vendors & Products Linux
Linux linux Kernel
References

Subscriptions

Linux Linux Kernel
cve-icon MITRE

Status: PUBLISHED

Assigner: Linux

Published:

Updated: 2026-05-27T12:58:10.542Z

Reserved: 2026-05-13T15:03:33.096Z

Link: CVE-2026-46077

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Awaiting Analysis

Published: 2026-05-27T14:17:29.040

Modified: 2026-05-27T14:48:03.013

Link: CVE-2026-46077

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-05-27T18:15:21Z

Weaknesses