Amazon Linux 2023 Security Advisory: ALAS2023LIVEPATCH-2026-118
Advisory Released Date: 2026-05-05
Advisory Updated Date: 2026-05-05
Severity:
Important
Issue Overview:
In the Linux kernel, the following vulnerability has been resolved:
crypto: algif_aead - Revert to operating out-of-place
To mitigate this issue, we recommend that customers disable loading of the algif_aead module by running the following commands:
echo "install algif_aead /bin/false" > /etc/modprobe.d/disable-algif.conf
rmmod algif_aead 2>/dev/null || true
This issue requires local authenticated access as a prerequisite; remote unauthenticated activity is not possible. (CVE-2026-31431)
Affected Packages:
kernel-livepatch-6.1.166-197.305
Issue Correction:
Please ensure you have live patching enabled. Run dnf update kernel-livepatch-6.1.166-197.305 --releasever latest or dnf update --advisory ALAS2023LIVEPATCH-2026-118 --releasever latest to update your system.
More information on how to update your system can be found on this page: Amazon Linux 2023 documentation
New Packages:
aarch64:
kernel-livepatch-6.1.166-197.305-1.0-1.amzn2023.aarch64
src:
kernel-livepatch-6.1.166-197.305-1.0-1.amzn2023.src
x86_64:
kernel-livepatch-6.1.166-197.305-1.0-1.amzn2023.x86_64