git.ipfire.org Git - thirdparty/openssl.git/commit

author	Daniel Kubec <kubec@openssl.org>
	Wed, 18 Mar 2026 10:27:52 +0000 (11:27 +0100)
committer	Tomas Mraz <tomas@openssl.foundation>
	Mon, 6 Apr 2026 19:17:55 +0000 (21:17 +0200)
commit	94607dbd0e7626dfb4e5f6b848d6d1aa0cf10f1f
tree	3d062482b9f34459306707884a61edfe0b3126e4	tree \| snapshot
parent	d283b51d254c781d1e8d38220edb8261f2dc7715	commit \| diff

Out-of-bounds read in AES-CFB-128 on X86-64 with AVX-512 support

The partial-block pre-processing code in ossl_aes_cfb128_vaes_enc and
ossl_aes_cfb128_vaes_dec unconditionally loads 16 bytes from the input buffer
using unmasked vmovdqu8 instructions, even when fewer bytes are valid.
This can read 1–15 bytes beyond the provided buffer. The post-processing code
in the same file correctly uses masked loads to avoid this issue.

Fixes CVE-2026-28386

Co-Authored-by: Stanislav Fort <stanislav.fort@aisle.com>
Co-Authored-by: Pavel Kohout <pavel.kohout@aisle.com>
Co-Authored-by: Alex Gaynor <gaynor@anthropic.com>
Reviewed-by: Shane Lontis <shane.lontis@oracle.com>
Reviewed-by: Saša Nedvědický <sashan@openssl.org>
Reviewed-by: Tomas Mraz <tomas@openssl.foundation>
MergeDate: Mon Apr 6 19:16:26 2026
(cherry picked from commit 7464ccdd43f600decd0af571556a1fc56ccd6419)