CVE-2026-46077 PUBLISHED

crypto: atmel-tdes - fix DMA sync direction

Assigner: Linux
Reserved: 13.05.2026 Published: 27.05.2026 Updated: 27.05.2026

In the Linux kernel, the following vulnerability has been resolved:

crypto: atmel-tdes - fix DMA sync direction

Before DMA output is consumed by the CPU, ->dma_addr_out must be synced with dma_sync_single_for_cpu() instead of dma_sync_single_for_device(). Using the wrong direction can return stale cache data on non-coherent platforms.

Product Status

Vendor Linux
Product Linux
Versions Default: unaffected
  • affected from 13802005d8f2db244ec1f5d7f6923de8f7a463db to 5281e6e2302362f6b75b70cbfe4098d2a25dafd9 (excl.)
  • affected from 13802005d8f2db244ec1f5d7f6923de8f7a463db to 12a0adfe498cd5d87e6365d7ca5f6b3eed79e523 (excl.)
  • affected from 13802005d8f2db244ec1f5d7f6923de8f7a463db to 863d11b3927703ad95077c81a8a6489c5c7872f7 (excl.)
  • affected from 13802005d8f2db244ec1f5d7f6923de8f7a463db to b5f5df801d161ba244f391519cbff2f4e5c6edc2 (excl.)
  • affected from 13802005d8f2db244ec1f5d7f6923de8f7a463db to c8a9a647532f5c2a04180352693215e24e9dba03 (excl.)
Vendor Linux
Product Linux
Versions Default: affected
  • Version 3.6 is affected
  • unaffected from 0 to 3.6 (excl.)
  • unaffected from 6.6.140 to 6.6.* (incl.)
  • unaffected from 6.12.86 to 6.12.* (incl.)
  • unaffected from 6.18.27 to 6.18.* (incl.)
  • unaffected from 7.0.4 to 7.0.* (incl.)
  • unaffected from 7.1-rc1 to * (incl.)

References