CVE-2026-31543 PUBLISHED

crash_dump: don't log dm-crypt key bytes in read_key_from_user_keying

Assigner: Linux
Reserved: 09.03.2026 Published: 24.04.2026 Updated: 24.04.2026

In the Linux kernel, the following vulnerability has been resolved:

crash_dump: don't log dm-crypt key bytes in read_key_from_user_keying

When debug logging is enabled, read_key_from_user_keying() logs the first 8 bytes of the key payload and partially exposes the dm-crypt key. Stop logging any key bytes.

Product Status

Vendor Linux
Product Linux
Versions Default: unaffected
  • affected from 479e58549b0fa7e80f1e0b9e69e0a2a8e6711132 to 4897bd307ba8757c31a3325ba6730961be606016 (excl.)
  • affected from 479e58549b0fa7e80f1e0b9e69e0a2a8e6711132 to ed8d91f469845d62d44c565a55d2ab1767969357 (excl.)
  • affected from 479e58549b0fa7e80f1e0b9e69e0a2a8e6711132 to 36f46b0e36892eba08978eef7502ff3c94ddba77 (excl.)
Vendor Linux
Product Linux
Versions Default: affected
  • Version 6.16 is affected
  • unaffected from 0 to 6.16 (excl.)
  • unaffected from 6.18.20 to 6.18.* (incl.)
  • unaffected from 6.19.10 to 6.19.* (incl.)
  • unaffected from 7.0 to * (incl.)

References