averello/linux-stable-mirror
1
0
Fork 0
mirror of https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git synced 2026-04-03 12:05:13 +02:00
Code Issues Packages Projects Releases Wiki Activity
Files
bd1be0d58b61ba4bf25fb3d8a820993ccfb1b2d6
linux-stable-mirror/crypto
History
Taeyang Lee 161bdc90fc crypto: authencesn - reject too-short AAD (assoclen<8) to match ESP/ESN spec 
[ Upstream commit 2397e92646 ]

authencesn assumes an ESP/ESN-formatted AAD. When assoclen is shorter than
the minimum expected length, crypto_authenc_esn_decrypt() can advance past
the end of the destination scatterlist and trigger a NULL pointer dereference
in scatterwalk_map_and_copy(), leading to a kernel panic (DoS).

Add a minimum AAD length check to fail fast on invalid inputs.

Fixes: 104880a6b4 ("crypto: authencesn - Convert to new AEAD interface")
Reported-By: Taeyang Lee <0wn@theori.io>
Signed-off-by: Taeyang Lee <0wn@theori.io>
Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au>
Signed-off-by: Sasha Levin <sashal@kernel.org>
2026-01-30 10:28:39 +01:00
..
asymmetric_keys
crypto: asymmetric_keys - prevent overflow in asymmetric_key_generate_id
2025-12-18 13:54:47 +01:00
async_tx
842.c
acompress.c
adiantum.c
aead.c
aegis128-core.c
aegis128-neon-inner.c
aegis128-neon.c
aegis-neon.h
aegis.h
aes_generic.c
aes_ti.c
af_alg.c
crypto: af_alg - zero initialize memory allocated via sock_kmalloc
2026-01-08 10:14:28 +01:00
ahash.c
crypto: ahash - Set default reqsize from ahash_alg
2025-05-29 11:02:40 +02:00
akcipher.c
algapi.c
algboss.c
algif_aead.c
algif_hash.c
crypto: af_alg - zero initialize memory allocated via sock_kmalloc
2026-01-08 10:14:28 +01:00
algif_rng.c
crypto: af_alg - zero initialize memory allocated via sock_kmalloc
2026-01-08 10:14:28 +01:00
algif_skcipher.c
ansi_cprng.c
anubis.c
api.c
crypto: api - Redo lookup on EEXIST
2025-06-19 15:31:30 +02:00
arc4.c
aria_generic.c
authenc.c
crypto: authenc - Correctly pass EINPROGRESS back up to the caller
2025-12-18 13:54:43 +01:00
authencesn.c
crypto: authencesn - reject too-short AAD (assoclen<8) to match ESP/ESN spec
2026-01-30 10:28:39 +01:00
blake2b_generic.c
blowfish_common.c
blowfish_generic.c
bpf_crypto_skcipher.c
camellia_generic.c
cast5_generic.c
cast6_generic.c
cast_common.c
cbc.c
ccm.c
chacha20poly1305.c
chacha_generic.c
cipher.c
cmac.c
compress.c
compress.h
crc32_generic.c
crc32c_generic.c
crc64_rocksoft_generic.c
crct10dif_common.c
crct10dif_generic.c
cryptd.c
crypto_engine.c
crypto_null.c
crypto: null - Use spin lock instead of mutex
2025-05-02 07:59:15 +02:00
crypto_user.c
ctr.c
cts.c
curve25519-generic.c
deflate.c
des_generic.c
dh_helper.c
dh.c
drbg.c
ecb.c
ecc_curve_defs.h
ecc.c
crypto: ecdsa - Harden against integer overflows in DIV_ROUND_UP()
2025-07-17 18:37:24 +02:00
ecdh_helper.c
ecdh.c
ecdsa.c
ecdsasignature.asn1
echainiv.c
ecrdsa_defs.h
ecrdsa_params.asn1
ecrdsa_pub_key.asn1
ecrdsa.c
essiv.c
crypto: essiv - Check ssize for decryption and in-place encryption
2025-10-19 16:33:42 +02:00
fcrypt.c
fips.c
gcm.c
geniv.c
ghash-generic.c
hash_info.c
hash.h
hctr2.c
hmac.c
internal.h
jitterentropy-kcapi.c
crypto: jitter - fix intermediary handling
2025-08-20 18:30:42 +02:00
jitterentropy-testing.c
jitterentropy.c
jitterentropy.h
Kconfig
crypto: Kconfig - Select LIB generic option
2025-05-02 07:59:33 +02:00
kdf_sp800108.c
keywrap.c
khazad.c
kpp.c
lrw.c
crypto: lrw - Only add ecb if it is not already there
2025-06-19 15:31:30 +02:00
lskcipher.c
lz4.c
lz4hc.c
lzo-rle.c
crypto: lzo - Fix compression buffer overrun
2025-05-29 11:02:25 +02:00
lzo.c
crypto: lzo - Fix compression buffer overrun
2025-05-29 11:02:25 +02:00
Makefile
md4.c
md5.c
michael_mic.c
nhpoly1305.c
pcbc.c
pcrypt.c
poly1305_generic.c
polyval-generic.c
proc.c
ripemd.h
rmd160.c
rng.c
crypto: rng - Ensure set_ent is always present
2025-10-12 12:57:19 +02:00
rsa_helper.c
rsa-pkcs1pad.c
rsa.c
rsaprivkey.asn1
rsapubkey.asn1
scatterwalk.c
scompress.c
seed.c
seqiv.c
crypto: seqiv - Do not use req->iv after crypto_aead_encrypt
2026-01-08 10:14:32 +01:00
serpent_generic.c
sha1_generic.c
sha3_generic.c
sha256_generic.c
sha512_generic.c
shash.c
sig.c
simd.c
skcipher.c
crypto: skcipher - Zap type in crypto_alloc_sync_skcipher
2025-05-29 11:02:40 +02:00
skcipher.h
sm3_generic.c
sm3.c
sm4_generic.c
sm4.c
streebog_generic.c
tcrypt.c
tcrypt.h
tea.c
testmgr.c
testmgr.h
twofish_common.c
twofish_generic.c
vmac.c
wp512.c
xcbc.c
xctr.c
xor.c
xts.c
crypto: xts - Only add ecb if it is not already there
2025-06-19 15:31:30 +02:00
xxhash_generic.c
zstd.c