Amazon Linux 2023 Security Advisory: ALAS2023-2026-1649
Advisory Released Date: 2026-05-05
Advisory Updated Date: 2026-05-09
FAQs regarding Amazon Linux ALAS/CVE Severity
In the Linux kernel, the following vulnerability has been resolved:
crypto: algif_aead - Revert to operating out-of-place
To mitigate this issue, we recommend that customers disable loading of the algif_aead module by running the following commands as an administrator user:
echo "install algif_aead /bin/false" > /etc/modprobe.d/disable-algif.conf
rmmod algif_aead
Some Amazon Linux 2 systems on the ARM64 architecture may fail the above rmmod command as they have the algif_aead module built-in. In this case, the following command and a reboot will mitigate the issue:
sudo grubby --update-kernel ALL --args "initcall_blacklist=algif_aead_init" (CVE-2026-31431)
In the Linux kernel, the following vulnerability has been resolved:
crypto: af_alg - limit RX SG extraction by receive buffer budget (CVE-2026-31677)
In the Linux kernel, the following vulnerability has been resolved:
crypto: authencesn - Do not place hiseq at end of dst for out-of-place decryption (CVE-2026-43033)
In the Linux kernel, the following vulnerability has been resolved:
crypto: af-alg - fix NULL pointer dereference in scatterwalk (CVE-2026-43043)
Affected Packages:
kernel6.18
Issue Correction:
Run dnf update kernel6.18 --releasever 2023.11.20260505 or dnf update --advisory ALAS2023-2026-1649 --releasever 2023.11.20260505 to update your system.
More information on how to update your system can be found on this page: Amazon Linux 2023 documentation
aarch64:
bpftool6.18-debuginfo-6.18.20-41.237.amzn2023.aarch64
kernel6.18-6.18.20-41.237.amzn2023.aarch64
kernel6.18-headers-6.18.20-41.237.amzn2023.aarch64
kernel6.18-debuginfo-6.18.20-41.237.amzn2023.aarch64
perf6.18-6.18.20-41.237.amzn2023.aarch64
kernel6.18-modules-extra-6.18.20-41.237.amzn2023.aarch64
bpftool6.18-6.18.20-41.237.amzn2023.aarch64
kernel6.18-debuginfo-common-aarch64-6.18.20-41.237.amzn2023.aarch64
python3-perf6.18-6.18.20-41.237.amzn2023.aarch64
perf6.18-debuginfo-6.18.20-41.237.amzn2023.aarch64
python3-perf6.18-debuginfo-6.18.20-41.237.amzn2023.aarch64
kernel6.18-devel-6.18.20-41.237.amzn2023.aarch64
kernel6.18-tools-6.18.20-41.237.amzn2023.aarch64
kernel6.18-tools-debuginfo-6.18.20-41.237.amzn2023.aarch64
kernel6.18-tools-devel-6.18.20-41.237.amzn2023.aarch64
kernel6.18-modules-extra-common-6.18.20-41.237.amzn2023.aarch64
kernel-livepatch-6.18.20-41.237-1.0-0.amzn2023.aarch64
src:
kernel6.18-6.18.20-41.237.amzn2023.src
x86_64:
kernel6.18-tools-devel-6.18.20-41.237.amzn2023.x86_64
kernel6.18-modules-extra-common-6.18.20-41.237.amzn2023.x86_64
python3-perf6.18-debuginfo-6.18.20-41.237.amzn2023.x86_64
kernel6.18-tools-6.18.20-41.237.amzn2023.x86_64
kernel6.18-tools-debuginfo-6.18.20-41.237.amzn2023.x86_64
bpftool6.18-debuginfo-6.18.20-41.237.amzn2023.x86_64
python3-perf6.18-6.18.20-41.237.amzn2023.x86_64
kernel6.18-debuginfo-6.18.20-41.237.amzn2023.x86_64
perf6.18-debuginfo-6.18.20-41.237.amzn2023.x86_64
kernel-livepatch-6.18.20-41.237-1.0-0.amzn2023.x86_64
bpftool6.18-6.18.20-41.237.amzn2023.x86_64
perf6.18-6.18.20-41.237.amzn2023.x86_64
kernel6.18-6.18.20-41.237.amzn2023.x86_64
kernel6.18-headers-6.18.20-41.237.amzn2023.x86_64
kernel6.18-modules-extra-6.18.20-41.237.amzn2023.x86_64
kernel6.18-debuginfo-common-x86_64-6.18.20-41.237.amzn2023.x86_64
kernel6.18-devel-6.18.20-41.237.amzn2023.x86_64