The Linux kernel introduced an issue whereby the caam crypto module executed print_hex_dump_devel() on HMAC key material during hash_digest_key(), leading to hexadecimal dumps of secret keys in kernel logs when CONFIG_DYNAMIC_DEBUG is active. This would expose cryptographic secrets to anyone with access to kernel debug output, potentially facilitating cryptanalysis or credential compromise. The vulnerability is a classic information‑disclosure flaw, allowing attackers to retrieve sensitive data that should remain confidential.

The affected product is the Linux kernel, specifically builds that include the caam crypto module and enable dynamic debugging. No explicit version range is listed, so any kernel with these features compiled from the source tree that incorporated the problematic code may be vulnerable.

The CVSS metric is not available, and the exploit probability EPS is not listed. The vulnerability is classified as a known‑exploited‑vulnerability (KEV) not listed, suggesting no publicly known exploits. Exploitation would rely on an attacker’s ability to read kernel debug logs or access kernel memory; the likely attack vector is local or privileged, as the leak occurs only when dynamic debug output is enabled. Because the secret is dumped in log space, an attacker with sufficient local privileges could obtain the key, but remote exploitation would be limited to scenarios where debug logs are exposed externally.