CVE-2026-46291 is a vulnerability in Linux Kernel
Published on June 8, 2026
crypto: caam - guard HMAC key hex dumps in hash_digest_key
In the Linux kernel, the following vulnerability has been resolved:
crypto: caam - guard HMAC key hex dumps in hash_digest_key
Use print_hex_dump_devel() for dumping sensitive HMAC key bytes in
hash_digest_key() to avoid leaking secrets at runtime when
CONFIG_DYNAMIC_DEBUG is enabled.
Products Associated with CVE-2026-46291
Want to know whenever a new CVE is published for Linux Kernel? stack.watch will email you.
Affected Versions
Linux:- Version 045e36780f11523e26d1e4a8c78bdc57f4003bd0 and below 2adbfca7452eeac45117b8e803288a2767f7075f is affected.
- Version 045e36780f11523e26d1e4a8c78bdc57f4003bd0 and below c7e52fe3f7901ccb9cd29b3f7c683d809ba87e48 is affected.
- Version 045e36780f11523e26d1e4a8c78bdc57f4003bd0 and below 5cffe3c136891aa4d579bf5c079a68f7cb371b0c is affected.
- Version 045e36780f11523e26d1e4a8c78bdc57f4003bd0 and below b8f12d9b00c1950779e5679b9c13908584682bb6 is affected.
- Version 045e36780f11523e26d1e4a8c78bdc57f4003bd0 and below 177730a273b18e195263ed953853273e901b5064 is affected.
- Version 3.6 is affected.
- Before 3.6 is unaffected.
- Version 6.6.140, <= 6.6.* is unaffected.
- Version 6.12.88, <= 6.12.* is unaffected.
- Version 6.18.30, <= 6.18.* is unaffected.
- Version 7.0.7, <= 7.0.* is unaffected.
- Version 7.1-rc1, <= * is unaffected.