CVE-2026-31543

April 24, 2026, 5:51 p.m.

None
No Score

Description

In the Linux kernel, the following vulnerability has been resolved: crash_dump: don't log dm-crypt key bytes in read_key_from_user_keying When debug logging is enabled, read_key_from_user_keying() logs the first 8 bytes of the key payload and partially exposes the dm-crypt key. Stop logging any key bytes.

Product(s) Impacted

Vendor Product Versions
Linux
  • Linux Kernel
  • *

Weaknesses

Common security weaknesses mapped to this vulnerability.

*CPE(s)

Affected systems and software identified for this CVE.

Type Vendor Product Version Update Edition Language Software Edition Target Software Target Hardware Other Information
o linux linux_kernel / / / / / / / /

References

https://git.kernel.org/stable/c/36f46b0e36892eba08978eef7502ff3c94ddba77
https://git.kernel.org/stable/c/4897bd307ba8757c31a3325ba6730961be606016
https://git.kernel.org/stable/c/ed8d91f469845d62d44c565a55d2ab1767969357

Tags

416baaa9-dc9f-4396-8d5f-8c081fb06d67
2026-04-24
CVE-2026-31543

Timeline

Published: April 24, 2026, 3:16 p.m.
Last Modified: April 24, 2026, 5:51 p.m.

Status : Awaiting Analysis

CVE has been recently published to the CVE List and has been received by the NVD.

More info

Source

416baaa9-dc9f-4396-8d5f-8c081fb06d67

*Disclaimer: Some vulnerabilities do not have an associated CPE. To enhance the data, we use AI to infer CPEs based on CVE details. This is an automated process and might not always be accurate.