Primary

Context

Linux Kernel dm-crypt Key Exposure Vulnerability in Crash Dump Logging

Vulnerability

Patched

A vulnerability in the Linux kernel's handling of dm-crypt keys during crash dump operations has been addressed. When debug logging is enabled, the function read_key_from_user_keying() inadvertently logs the first eight bytes of the dm-crypt key payload, partially exposing the key. This issue has been corrected by removing the logging of key bytes altogether.

Impact

The vulnerability could lead to the unintentional exposure of dm-crypt key bytes in the debug logs, potentially allowing an attacker to retrieve sensitive encryption keys.

Added: Apr 24, 2026, 8:25 PM

Updated: Apr 24, 2026, 8:25 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

0.6

exploitability

4.0

remediation

7.7

relevance

6.6

threat

3.2

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

0.6

exploitability

4.0

remediation

7.7

relevance

6.6

threat

3.2

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel dm-crypt Key Exposure Vulnerability in Crash Dump Logging

Vulnerability

Impact

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating