vulnerability

Red Hat: CVE-2026-43077: kernel: crypto: algif_aead - Fix minimum RX size check for decryption (Multiple Advisories)

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
7	(AV:L/AC:M/Au:S/C:C/I:C/A:C)	May 6, 2026	May 10, 2026	May 13, 2026

Severity

CVSS

(AV:L/AC:M/Au:S/C:C/I:C/A:C)

Published

May 6, 2026

Added

May 10, 2026

Modified

May 13, 2026

Description

In the Linux kernel, the following vulnerability has been resolved:

crypto: algif_aead - Fix minimum RX size check for decryption

The check for the minimum receive buffer size did not take the
tag size into account during decryption. Fix this by adding the
required extra length.

Solutions

redhat-upgrade-kernelredhat-upgrade-kernel-rt

References

EUVD-EUVD-2026-27564
NVD-CVE-2026-43077
REDHAT-RHSA-2026:13565
REDHAT-RHSA-2026:13566
REDHAT-RHSA-2026:13577
REDHAT-RHSA-2026:13578
REDHAT-RHSA-2026:13887
REDHAT-RHSA-2026:13932
REDHAT-RHSA-2026:14339
https://euvd.enisa.europa.eu/vulnerability/EUVD-2026-27564

Rapid7 Labs

2026 Global Threat Landscape Report

The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.

Get report