Fixed
Created: Oct 26, 2025
Updated: Oct 30, 2025
Resolved Date: Oct 29, 2025
Found In Version: 10.25.33.1
Fix Version: 10.25.33.2
Severity: Standard
Applicable for: Wind River Linux LTS 25
Component/s: Kernel
In the Linux kernel, the following vulnerability has been resolved:[EOL][EOL]crypto: af_alg - Fix incorrect boolean values in af_alg_ctx[EOL][EOL]Commit 1b34cbbf4f01 ("crypto: af_alg - Disallow concurrent writes in[EOL]af_alg_sendmsg") changed some fields from bool to 1-bit bitfields of[EOL]type u32.[EOL][EOL]However, some assignments to these fields, specifically 'more' and[EOL]'merge', assign values greater than 1. These relied on C's implicit[EOL]conversion to bool, such that zero becomes false and nonzero becomes[EOL]true.[EOL][EOL]With a 1-bit bitfields of type u32 instead, mod 2 of the value is taken[EOL]instead, resulting in 0 being assigned in some cases when 1 was intended.[EOL][EOL]Fix this by restoring the bool type.
