CVE-2026-46291

high

Description

In the Linux kernel, the following vulnerability has been resolved: crypto: caam - guard HMAC key hex dumps in hash_digest_key Use print_hex_dump_devel() for dumping sensitive HMAC key bytes in hash_digest_key() to avoid leaking secrets at runtime when CONFIG_DYNAMIC_DEBUG is enabled.

References

https://git.kernel.org/stable/c/c7e52fe3f7901ccb9cd29b3f7c683d809ba87e48

https://git.kernel.org/stable/c/b8f12d9b00c1950779e5679b9c13908584682bb6

https://git.kernel.org/stable/c/5cffe3c136891aa4d579bf5c079a68f7cb371b0c

https://git.kernel.org/stable/c/2adbfca7452eeac45117b8e803288a2767f7075f

https://git.kernel.org/stable/c/177730a273b18e195263ed953853273e901b5064

Details

Source: Mitre, NVD

Published: 2026-06-08

Updated: 2026-06-08

Risk Information

CVSS v2

Base Score: 2.1

Vector: CVSS2#AV:L/AC:L/Au:N/C:P/I:N/A:N

Severity: Low

CVSS v3

Base Score: 7.1

Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H

Severity: High

EPSS

EPSS: 0.00018