CVE-2026-46028
crypto: algif_aead - snapshot IV for async AEAD requests
Description
In the Linux kernel, the following vulnerability has been resolved: crypto: algif_aead - snapshot IV for async AEAD requests AF_ALG AEAD AIO requests currently use the socket-wide IV buffer during request processing. For async requests, later socket activity can update that shared state before the original request has fully completed, which can lead to inconsistent IV handling. Snapshot the IV into per-request storage when preparing the AEAD request, so in-flight operations no longer depend on mutable socket state.
INFO
Published Date :
May 27, 2026, 2:17 p.m.
Last Modified :
May 27, 2026, 2:48 p.m.
Remotely Exploit :
No
Source :
416baaa9-dc9f-4396-8d5f-8c081fb06d67
Solution
- Apply the Linux kernel crypto: algif_aead patch.
- Ensure IVs are snapshotted into per-request storage.
- Test async AEAD request processing for consistency.
References to Advisories, Solutions, and Tools
Here, you will find a curated list of external links that provide in-depth
information, practical solutions, and valuable tools related to
CVE-2026-46028.
CWE - Common Weakness Enumeration
While CVE identifies
specific instances of vulnerabilities, CWE categorizes the common flaws or
weaknesses that can lead to vulnerabilities. CVE-2026-46028 is
associated with the following CWEs:
Common Attack Pattern Enumeration and Classification (CAPEC)
Common Attack Pattern Enumeration and Classification
(CAPEC)
stores attack patterns, which are descriptions of the common attributes and
approaches employed by adversaries to exploit the CVE-2026-46028
weaknesses.
We scan GitHub repositories to detect new proof-of-concept exploits. Following list is a collection of public exploits and proof-of-concepts, which have been published on GitHub (sorted by the most recently updated).
Results are limited to the first 15 repositories due to potential performance issues.
The following list is the news that have been mention
CVE-2026-46028 vulnerability anywhere in the article.
The following table lists the changes that have been made to the
CVE-2026-46028 vulnerability over time.
Vulnerability history details can be useful for understanding the evolution of a vulnerability, and for identifying the most recent changes that may impact the vulnerability's severity, exploitability, or other characteristics.
-
New CVE Received by 416baaa9-dc9f-4396-8d5f-8c081fb06d67
May. 27, 2026
Action Type Old Value New Value Added Description In the Linux kernel, the following vulnerability has been resolved: crypto: algif_aead - snapshot IV for async AEAD requests AF_ALG AEAD AIO requests currently use the socket-wide IV buffer during request processing. For async requests, later socket activity can update that shared state before the original request has fully completed, which can lead to inconsistent IV handling. Snapshot the IV into per-request storage when preparing the AEAD request, so in-flight operations no longer depend on mutable socket state. Added Reference https://git.kernel.org/stable/c/08ea39a556ecd39b33c2b4888861001c6706a62e Added Reference https://git.kernel.org/stable/c/3d72f8c6490dc79210b64270740cb2a8619361a4 Added Reference https://git.kernel.org/stable/c/46fdb39e83227b5d39f7c934a0947ea913f13c18 Added Reference https://git.kernel.org/stable/c/5aa58c3a572b3e3b6c786953339f7978b845cc52 Added Reference https://git.kernel.org/stable/c/a920cabdb0b7cf1f4e11a20524253ae5bd09092b Added Reference https://git.kernel.org/stable/c/c2138c9bd02af19e0b407376140cd5435b0d81da Added Reference https://git.kernel.org/stable/c/ebc235675f24b0e3f8bc92b8419471d42f837d8f Added Reference https://git.kernel.org/stable/c/fa0fcec9b49d58e71df7ede91ecd86855f608e85