{"dataType":"CVE_RECORD","dataVersion":"5.2","cveMetadata":{"cveId":"CVE-2026-43033","assignerOrgId":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","state":"PUBLISHED","assignerShortName":"Linux","dateReserved":"2026-05-01T14:12:55.977Z","datePublished":"2026-05-01T14:15:32.583Z","dateUpdated":"2026-05-11T22:16:25.061Z"},"containers":{"cna":{"providerMetadata":{"orgId":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","shortName":"Linux","dateUpdated":"2026-05-11T22:16:25.061Z"},"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\ncrypto: authencesn - Do not place hiseq at end of dst for out-of-place decryption\n\nWhen decrypting data that is not in-place (src != dst), there is\nno need to save the high-order sequence bits in dst as it could\nsimply be re-copied from the source.\n\nHowever, the data to be hashed need to be rearranged accordingly.\n\n\nThanks,"}],"metrics":[{"cvssV3_1":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","baseScore":7.8,"baseSeverity":"HIGH"}}],"affected":[{"product":"Linux","vendor":"Linux","defaultStatus":"unaffected","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","programFiles":["crypto/authencesn.c"],"versions":[{"version":"104880a6b470958ddc30e139c41aa4f6ed3a5234","lessThan":"8c62f618576519dbed6816fafc623ce592953025","status":"affected","versionType":"git"},{"version":"104880a6b470958ddc30e139c41aa4f6ed3a5234","lessThan":"d589abd8b019b07075fda255ceab8c8e950cdb3f","status":"affected","versionType":"git"},{"version":"104880a6b470958ddc30e139c41aa4f6ed3a5234","lessThan":"5466e7d0cd9e4f9cef9d8f18f18b60e7bc1c77e5","status":"affected","versionType":"git"},{"version":"104880a6b470958ddc30e139c41aa4f6ed3a5234","lessThan":"d0c4ff6812386880f30bc64c2921299cc4d7b47f","status":"affected","versionType":"git"},{"version":"104880a6b470958ddc30e139c41aa4f6ed3a5234","lessThan":"89fe118b6470119b20c04afc36e45b81a69ea11f","status":"affected","versionType":"git"},{"version":"104880a6b470958ddc30e139c41aa4f6ed3a5234","lessThan":"153d5520c3f9fd62e71c7e7f9e34b59cf411e555","status":"affected","versionType":"git"},{"version":"104880a6b470958ddc30e139c41aa4f6ed3a5234","lessThan":"cded4002d22177e8deaca1f257ecd932c9582b6b","status":"affected","versionType":"git"},{"version":"104880a6b470958ddc30e139c41aa4f6ed3a5234","lessThan":"e02494114ebf7c8b42777c6cd6982f113bfdbec7","status":"affected","versionType":"git"}]},{"product":"Linux","vendor":"Linux","defaultStatus":"affected","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","programFiles":["crypto/authencesn.c"],"versions":[{"version":"4.3","status":"affected"},{"version":"0","lessThan":"4.3","status":"unaffected","versionType":"semver"},{"version":"5.10.254","lessThanOrEqual":"5.10.*","status":"unaffected","versionType":"semver"},{"version":"5.15.204","lessThanOrEqual":"5.15.*","status":"unaffected","versionType":"semver"},{"version":"6.1.170","lessThanOrEqual":"6.1.*","status":"unaffected","versionType":"semver"},{"version":"6.6.137","lessThanOrEqual":"6.6.*","status":"unaffected","versionType":"semver"},{"version":"6.12.85","lessThanOrEqual":"6.12.*","status":"unaffected","versionType":"semver"},{"version":"6.18.22","lessThanOrEqual":"6.18.*","status":"unaffected","versionType":"semver"},{"version":"6.19.12","lessThanOrEqual":"6.19.*","status":"unaffected","versionType":"semver"},{"version":"7.0","lessThanOrEqual":"*","status":"unaffected","versionType":"original_commit_for_fix"}]}],"cpeApplicability":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"4.3","versionEndExcluding":"5.10.254"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"4.3","versionEndExcluding":"5.15.204"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"4.3","versionEndExcluding":"6.1.170"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"4.3","versionEndExcluding":"6.6.137"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"4.3","versionEndExcluding":"6.12.85"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"4.3","versionEndExcluding":"6.18.22"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"4.3","versionEndExcluding":"6.19.12"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"4.3","versionEndExcluding":"7.0"}]}]}],"references":[{"url":"https://git.kernel.org/stable/c/8c62f618576519dbed6816fafc623ce592953025"},{"url":"https://git.kernel.org/stable/c/d589abd8b019b07075fda255ceab8c8e950cdb3f"},{"url":"https://git.kernel.org/stable/c/5466e7d0cd9e4f9cef9d8f18f18b60e7bc1c77e5"},{"url":"https://git.kernel.org/stable/c/d0c4ff6812386880f30bc64c2921299cc4d7b47f"},{"url":"https://git.kernel.org/stable/c/89fe118b6470119b20c04afc36e45b81a69ea11f"},{"url":"https://git.kernel.org/stable/c/153d5520c3f9fd62e71c7e7f9e34b59cf411e555"},{"url":"https://git.kernel.org/stable/c/cded4002d22177e8deaca1f257ecd932c9582b6b"},{"url":"https://git.kernel.org/stable/c/e02494114ebf7c8b42777c6cd6982f113bfdbec7"}],"title":"crypto: authencesn - Do not place hiseq at end of dst for out-of-place decryption","x_generator":{"engine":"bippy-1.2.0"}}}}