#regression

8/10

Since Linux 6.9, the cryptsetup luksSuspend command no longer wipes disk-encryption keys from memory during suspend, leaving them accessible in RAM. This regression undermines the security of LUKS-encrypted devices because an attacker with physical access to a suspended system could extract the master key from memory and decrypt the disk without needing the passphrase. The issue affects Linux kernels from 6.9 onward, but not all distributions are impacted because luksSuspend is not part of the official cryptsetup specification; it originated as a Debian extension.