Skip to main content

Linux Kernel EUVDEUVD-2026-28690

| CVE-2026-43384 CRITICAL
2026-05-08 Linux GHSA-3xxf-f9pw-rwm5
9.8
CVSS 3.1 · NVD
Share

Severity by source

NVD PRIMARY
9.8 CRITICAL
AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
SUSE
CRITICAL
qualitative

Primary rating from NVD.

CVSS VectorNVD

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Attack Vector
Network
Attack Complexity
Low
Privileges Required
None
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
High
Availability
High

Lifecycle Timeline

5
Analysis Generated
May 11, 2026 - 08:31 vuln.today
CVSS changed
May 11, 2026 - 08:22 NVD
9.8 (CRITICAL)
Patch available
May 08, 2026 - 16:18 EUVD
CVE Published
May 08, 2026 - 14:21 nvd
CRITICAL 9.8
CVE Published
May 08, 2026 - 14:21 nvd
UNKNOWN (no severity yet)

DescriptionCVE.org

In the Linux kernel, the following vulnerability has been resolved:

net/tcp-ao: Fix MAC comparison to be constant-time

To prevent timing attacks, MACs need to be compared in constant time. Use the appropriate helper function for this.

AnalysisAI

Timing attacks can compromise TCP Authentication Option (TCP-AO) message authentication codes in Linux kernel 6.7+ due to non-constant-time MAC comparison. Remote unauthenticated attackers on the network path can exploit timing differences during MAC validation to extract authentication secrets, defeating TCP-AO's connection authentication mechanism. Exploitation probability is low (EPSS 0.02%, 5th percentile) with no confirmed active exploitation, but vendor patches are available for affected stable branches including 6.12.78, 6.18.19, 6.19.9, and mainline 7.0.

Technical ContextAI

TCP Authentication Option (TCP-AO, RFC 5925) provides cryptographic authentication for TCP connections using Message Authentication Codes (MACs). The Linux kernel implementation introduced in commit 0a3a809089eb (merged in kernel 6.7) contains a non-constant-time comparison function when validating received MACs against computed values. Timing side-channel attacks exploit measurable differences in execution time during byte-by-byte comparison operations - when comparison stops early on the first mismatched byte, the timing reveals information about how many bytes matched. An attacker positioned to observe network timing (same network segment or man-in-the-middle position) can statistically analyze response times across many connection attempts to incrementally recover the correct MAC value and ultimately derive the authentication key material. The vulnerability affects the TCP-AO implementation specifically in net/ipv4/tcp_ao.c, requiring use of constant-time comparison primitives (crypto_memneq or equivalent) to prevent timing oracle leakage. CPE strings indicate the vulnerability exists in linux:linux kernel components where TCP-AO is compiled and enabled.

RemediationAI

Upgrade to patched Linux kernel versions: 6.12.78 or later for 6.12.x series, 6.18.19 or later for 6.18.x series, 6.19.9 or later for 6.19.x series, or 7.0 for mainline. Patches replace vulnerable MAC comparison with crypto_memneq() constant-time comparison primitive, available in upstream commits 8be6ed64966da48b6c4726918f106c18742a5125 (mainline), a269cbdc442f8658bca35383e34b9d0b0ff95a1c, 080b0e210088296dd50d6637c06c1db14246adfe, and 67edfec516d30d3e62925c397be4a1e5185802fc (stable branches) at https://git.kernel.org/stable/. Distributions should apply vendor-specific kernel updates when released. If immediate patching is not feasible, disable TCP-AO on affected systems as compensating control - remove TCP-AO configuration from sysctl settings and connection configurations, reverting to IPsec or TLS for connection authentication instead. Note this workaround eliminates TCP-AO functionality entirely but removes attack surface. Network segmentation to prevent attacker positioning on TCP connection paths provides defense-in-depth but does not eliminate risk from insider threats or compromised adjacent systems. Monitor for unusual patterns of TCP connection attempts or timing probes as potential reconnaissance activity, though detection is challenging given low signal-to-noise ratio of legitimate connection variability.

Vendor StatusVendor

SUSE

Severity: Critical
Product Status
SUSE Linux Enterprise Desktop 15 SP7 Fixed
SUSE Linux Enterprise Desktop 15 SP7 Fixed
SUSE Linux Enterprise High Availability Extension 15 SP7 Fixed
SUSE Linux Enterprise High Availability Extension 15 SP7 Fixed
SUSE Linux Enterprise High Performance Computing 15 SP7 Fixed

Share

EUVD-2026-28690 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy