Security Advisory

CVE-2024-42229

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-07-30 07:47:09

Last updated 2026-05-11 20:28:18

Assigner Linux

State PUBLISHED

Description

In the Linux kernel, the following vulnerability has been resolved: crypto: aead,cipher - zeroize key buffer after use I.G 9.7.B for FIPS 140-3 specifies that variables temporarily holding cryptographic information should be zeroized once they are no longer needed. Accomplish this by using kfree_sensitive for buffers that previously held the private key.

← Browse all CVEs View on cve.org ↗