Primary

Context

Linux Kernel Handling of MAY_BACKLOG Requests Vulnerability in Crypto Component

Vulnerability

Patched

A vulnerability in the Linux kernel's crypto component, specifically in the pcrypt module, has been addressed. This issue involved improper handling of MAY_BACKLOG requests, which can return a busy status. The kernel now correctly manages these requests by checking for the busy signal and filtering out in-progress notifications. This vulnerability affects the Linux kernel stable tree.

Impact

The vulnerability could lead to incorrect processing of cryptographic requests, potentially causing performance issues or errors in cryptographic operations.

Remediation

Users can upgrade to the latest version of the Linux kernel stable tree to address this vulnerability.

Added: May 19, 2026, 12:25 PM

Updated: May 19, 2026, 12:25 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

1.9

exploitability

4.0

remediation

3.1

relevance

8.8

threat

3.2

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

1.9

exploitability

4.0

remediation

3.1

relevance

8.8

threat

3.2

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel Handling of MAY_BACKLOG Requests Vulnerability in Crypto Component

Vulnerability

Impact

Remediation

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating