Unrated severityNVD Advisory· Published Mar 25, 2026· Updated Mar 25, 2026

cryptodev-linux <= 1.14 get_userbuf Use After Free LPE

CVE-2026-28529

Description

cryptodev-linux version 1.14 and prior contain a page reference handling flaw in the get_userbuf function of the /dev/crypto device driver that allows local users to trigger use-after-free conditions. Attackers with access to the /dev/crypto interface can repeatedly decrement reference counts of controlled pages to achieve local privilege escalation.

Affected products

cryptodev-linux/cryptodev-linuxllm-create
Range: <=1.14
cryptodev-linux/cryptodev-linuxv5
Range: 0

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

github.com/cryptodev-linux/cryptodev-linux/pull/104mitrepatch
gist.github.com/n4sm/0fd2479e0c23e0fa2f192cd8fda45750mitreexploit
nasm.re/posts/cryptodev-linux-vuln/mitretechnical-descriptionexploit
www.vulncheck.com/advisories/cryptodev-linux-get-userbuf-use-after-free-lpemitrethird-party-advisory

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000