CVE-2026-46291

Source
https://cve.org/CVERecord?id=CVE-2026-46291
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-46291.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2026-46291
Downstream
Related
Published
2026-06-08T15:46:18.317Z
Modified
2026-07-09T03:52:33.204858442Z
Summary
crypto: caam - guard HMAC key hex dumps in hash_digest_key
Details

In the Linux kernel, the following vulnerability has been resolved:

crypto: caam - guard HMAC key hex dumps in hashdigestkey

Use printhexdumpdevel() for dumping sensitive HMAC key bytes in hashdigestkey() to avoid leaking secrets at runtime when CONFIGDYNAMIC_DEBUG is enabled.

Database specific
{
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/46xxx/CVE-2026-46291.json",
    "cna_assigner": "Linux"
}
References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
045e36780f11523e26d1e4a8c78bdc57f4003bd0
Fixed
e8e72fdf47bd5ef7abe642b034c6178a61a8580a
Fixed
cd849c07b8d706425e60a4dfcef54b7b67c967ce
Fixed
a9207798fe619cbc85c8744a9b9e2af1db2b6e1a
Fixed
2adbfca7452eeac45117b8e803288a2767f7075f
Fixed
c7e52fe3f7901ccb9cd29b3f7c683d809ba87e48
Fixed
5cffe3c136891aa4d579bf5c079a68f7cb371b0c
Fixed
b8f12d9b00c1950779e5679b9c13908584682bb6
Fixed
177730a273b18e195263ed953853273e901b5064

Database specific

source
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-46291.json"

Linux / Kernel

Package

Name
Kernel

Affected ranges

Type
ECOSYSTEM
Events
Introduced
3.6.0
Fixed
5.10.259
Type
ECOSYSTEM
Events
Introduced
5.11.0
Fixed
5.15.210
Type
ECOSYSTEM
Events
Introduced
5.16.0
Fixed
6.1.176
Type
ECOSYSTEM
Events
Introduced
6.2.0
Fixed
6.6.140
Type
ECOSYSTEM
Events
Introduced
6.7.0
Fixed
6.12.88
Type
ECOSYSTEM
Events
Introduced
6.13.0
Fixed
6.18.30
Type
ECOSYSTEM
Events
Introduced
6.19.0
Fixed
7.0.7

Database specific

source
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-46291.json"