virtio crypto

A dodgy race in the Linux kernel’s virtio crypto path has been fixed by adding spinlock protection around virtqueue notification handling — a surgical change that closes a denial‑of‑service and hang condition seen when the virtio‑crypto device and the AF_ALG backend are exercised concurrently...

A heap buffer overflow in QEMU’s virtual crypto device — specifically in the function virtio_crypto_sym_op_helper() — creates a fragile attack surface that can be triggered when the reported source and destination lengths for a symmetric crypto operation differ; the result is a potentially...