VYPR
Unrated severityNVD Advisory· Published Jul 30, 2024· Updated Jan 5, 2026

crypto: aead,cipher - zeroize key buffer after use

CVE-2024-42229

Description

In the Linux kernel, the following vulnerability has been resolved:

crypto: aead,cipher - zeroize key buffer after use

I.G 9.7.B for FIPS 140-3 specifies that variables temporarily holding cryptographic information should be zeroized once they are no longer needed. Accomplish this by using kfree_sensitive for buffers that previously held the private key.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

155

Patches

Vulnerability mechanics

References

8

News mentions

0

No linked articles in our index yet.