ALT-PU-2026-7075-2

Package update kernel-image-6.12 in branch sisyphus

Version6.12.85-alt1

Published2026-05-07

Max severityHIGH

Severity:

Closed issues (3)

HIGH7.8

Уязвимость модуля для реализации AEAD-алгоритмов algif_aead ядра операционной системы Linux, позволяющая нарушителю повысить свои привилегии

Published: 2026-04-30Modified: 2026-05-05

CVSS 3.xHIGH 7.8

CVSS:3.x/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CVSS 2.0MEDIUM 6.8

CVSS:2.0/AV:L/AC:L/Au:S/C:C/I:C/A:C

References

CVE-2026-31431

HIGH7.8

In the Linux kernel, the following vulnerability has been resolved: crypto: algif_aead - Revert to operating out-of-place This mostly reverts commit 72548b093ee3 except for the copying of the associated data. There is no benefit in operating in-place in algif_aead since the source and destination come from different mappings. Get rid of all the complexity added for in-place operation and just copy the AD directly.

Published: 2026-04-22Modified: 2026-05-05

CVSS 3.xHIGH 7.8

CVSS:3.x/CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

References

GHSA-m38g-vww2-mvgx

HIGH7.5

Talos Linux has a local privilege escalation from untrusted workloads

Published: 2026-05-07

CVSS 3.xHIGH 7.5

CVSS:3.x/CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:N

References