NULL pointer dereference in Linux kernel - CVE-2026-53302
Published: June 29, 2026
Linux kernel
Detailed vulnerability description
The vulnerability allows a local user to cause a denial of service.
The vulnerability exists due to improper algorithm selection in eip93_hmac_setkey() in the EIP93 crypto driver when processing AEAD setkey operations. A local user can trigger a failed setkey operation to cause a denial of service.
A subsequent crypto operation may dereference a NULL pointer in the request context and panic the kernel after the SA record is left partially initialized with zeroed digest fields.