CVE-2026-31431
Published: Apr 22, 2026
Modified: May 18, 2026
CVSS v3.1
7.8
Description
In the Linux kernel, the following vulnerability has been resolved: crypto: algif_aead - Revert to operating out-of-place This mostly reverts commit 72548b093ee3 except for the copying of the associated data. There is no benefit in operating in-place in algif_aead since the source and destination come from different mappings. Get rid of all the complexity added for in-place operation and just copy the AD directly.
| Vendor | Product | Versions |
|---|---|---|
Linux | Linux | affected 72548b093ee38a6d4f2a19e6ef1948ae05c181f7 - < 893d22e0135fa394db81df88697fba6032747667affected 72548b093ee38a6d4f2a19e6ef1948ae05c181f7 - < 19d43105a97be0810edbda875f2cd03f30dc130caffected 72548b093ee38a6d4f2a19e6ef1948ae05c181f7 - < 961cfa271a918ad4ae452420e7c303149002875baffected 72548b093ee38a6d4f2a19e6ef1948ae05c181f7 - < 3115af9644c342b356f3f07a4dd1c8905cd9a6fcaffected 72548b093ee38a6d4f2a19e6ef1948ae05c181f7 - < 8b88d99341f139e23bdeb1027a2a3ae10d341d82+3 more versions |
Linux | Linux | affected 4.14unaffected 0 - < 4.14unaffected 5.10.254 - <= 5.10.*unaffected 5.15.204 - <= 5.15.*unaffected 6.1.170 - <= 6.1.*+5 more versions |
CVSS v3.1 Details
CVSS v3.1 Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now