CVE-2026-31431

Name
CVE-2026-31431
Description
In the Linux kernel, the following vulnerability has been resolved: crypto: algif_aead - Revert to operating out-of-place This mostly reverts commit 72548b093ee3 except for the copying of the associated data. There is no benefit in operating in-place in algif_aead since the source and destination come from different mappings. Get rid of all the complexity added for in-place operation and just copy the AD directly.
NVD Severity
unknown
Other trackers
CVE, NVD, CERT, CVE Details, CIRCL, Arch Linux, Debian, Red Hat, Ubuntu, Gentoo, SUSE (Bugzilla), SUSE (CVE), Mageia
Mailing lists
oss-security, full-disclosure, bugtraq
Exploits
Exploit DB, Metasploit
Forges
GitHub (code, issues), Aports (code, issues)

References

Type URI
416baaa9-dc9f-4396-8d5f-8c081fb06d67 https://git.kernel.org/stable/c/a664bf3d603dc3bdcf9ae47cc21e0daec706d7a5
416baaa9-dc9f-4396-8d5f-8c081fb06d67 https://git.kernel.org/stable/c/ce42ee423e58dffa5ec03524054c9d8bfd4f6237
416baaa9-dc9f-4396-8d5f-8c081fb06d67 https://git.kernel.org/stable/c/fafe0fa2995a0f7073c1c358d7d3145bcc9aedd8
416baaa9-dc9f-4396-8d5f-8c081fb06d67 https://git.kernel.org/stable/c/19d43105a97be0810edbda875f2cd03f30dc130c
416baaa9-dc9f-4396-8d5f-8c081fb06d67 https://git.kernel.org/stable/c/3115af9644c342b356f3f07a4dd1c8905cd9a6fc
416baaa9-dc9f-4396-8d5f-8c081fb06d67 https://git.kernel.org/stable/c/893d22e0135fa394db81df88697fba6032747667
416baaa9-dc9f-4396-8d5f-8c081fb06d67 https://git.kernel.org/stable/c/8b88d99341f139e23bdeb1027a2a3ae10d341d82
416baaa9-dc9f-4396-8d5f-8c081fb06d67 https://git.kernel.org/stable/c/961cfa271a918ad4ae452420e7c303149002875b
af854a3a-2127-422b-91ae-364da2661108 http://www.openwall.com/lists/oss-security/2026/04/29/23
af854a3a-2127-422b-91ae-364da2661108 http://www.openwall.com/lists/oss-security/2026/04/29/25
af854a3a-2127-422b-91ae-364da2661108 http://www.openwall.com/lists/oss-security/2026/04/29/26
af854a3a-2127-422b-91ae-364da2661108 http://www.openwall.com/lists/oss-security/2026/04/30/10
af854a3a-2127-422b-91ae-364da2661108 http://www.openwall.com/lists/oss-security/2026/04/30/11
af854a3a-2127-422b-91ae-364da2661108 http://www.openwall.com/lists/oss-security/2026/04/30/12
af854a3a-2127-422b-91ae-364da2661108 http://www.openwall.com/lists/oss-security/2026/04/30/14
af854a3a-2127-422b-91ae-364da2661108 http://www.openwall.com/lists/oss-security/2026/04/30/15
af854a3a-2127-422b-91ae-364da2661108 http://www.openwall.com/lists/oss-security/2026/04/30/16
af854a3a-2127-422b-91ae-364da2661108 http://www.openwall.com/lists/oss-security/2026/04/30/17
af854a3a-2127-422b-91ae-364da2661108 http://www.openwall.com/lists/oss-security/2026/04/30/18
af854a3a-2127-422b-91ae-364da2661108 http://www.openwall.com/lists/oss-security/2026/04/30/2
af854a3a-2127-422b-91ae-364da2661108 http://www.openwall.com/lists/oss-security/2026/04/30/20
af854a3a-2127-422b-91ae-364da2661108 http://www.openwall.com/lists/oss-security/2026/04/30/5
af854a3a-2127-422b-91ae-364da2661108 http://www.openwall.com/lists/oss-security/2026/04/30/6
af854a3a-2127-422b-91ae-364da2661108 https://copy.fail
af854a3a-2127-422b-91ae-364da2661108 https://websec.net/blog/cve-2026-31431-linux-algifaead-page-cache-write-to-root-69f38a4ccddd2db1f520f170
134c704f-9b21-4f2e-91b3-4a467353bcc0 https://github.com/theori-io/copy-fail-CVE-2026-31431
af854a3a-2127-422b-91ae-364da2661108 http://www.openwall.com/lists/oss-security/2026/05/01/2
af854a3a-2127-422b-91ae-364da2661108 http://www.openwall.com/lists/oss-security/2026/05/01/3
af854a3a-2127-422b-91ae-364da2661108 http://www.openwall.com/lists/oss-security/2026/05/01/10
af854a3a-2127-422b-91ae-364da2661108 http://www.openwall.com/lists/oss-security/2026/05/01/12
af854a3a-2127-422b-91ae-364da2661108 http://www.openwall.com/lists/oss-security/2026/05/01/15
af854a3a-2127-422b-91ae-364da2661108 http://www.openwall.com/lists/oss-security/2026/05/01/16
134c704f-9b21-4f2e-91b3-4a467353bcc0 https://access.redhat.com/security/cve/cve-2026-31431#cve-details-mitigation
134c704f-9b21-4f2e-91b3-4a467353bcc0 https://lore.kernel.org/linux-cve-announce/2026042214-CVE-2026-31431-3d65@gregkh/
134c704f-9b21-4f2e-91b3-4a467353bcc0 https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2026-31431
134c704f-9b21-4f2e-91b3-4a467353bcc0 https://xint.io/blog/copy-fail-linux-distributions#the-fix-6
af854a3a-2127-422b-91ae-364da2661108 http://www.openwall.com/lists/oss-security/2026/05/01/17
af854a3a-2127-422b-91ae-364da2661108 http://www.openwall.com/lists/oss-security/2026/05/01/18
af854a3a-2127-422b-91ae-364da2661108 http://www.openwall.com/lists/oss-security/2026/05/01/22
af854a3a-2127-422b-91ae-364da2661108 http://www.openwall.com/lists/oss-security/2026/05/01/23
af854a3a-2127-422b-91ae-364da2661108 http://www.openwall.com/lists/oss-security/2026/05/01/24
af854a3a-2127-422b-91ae-364da2661108 http://www.openwall.com/lists/oss-security/2026/05/02/4
af854a3a-2127-422b-91ae-364da2661108 http://www.openwall.com/lists/oss-security/2026/05/02/5
af854a3a-2127-422b-91ae-364da2661108 http://www.openwall.com/lists/oss-security/2026/05/02/6
af854a3a-2127-422b-91ae-364da2661108 http://www.openwall.com/lists/oss-security/2026/05/02/7
af854a3a-2127-422b-91ae-364da2661108 http://www.openwall.com/lists/oss-security/2026/05/02/8
af854a3a-2127-422b-91ae-364da2661108 http://www.openwall.com/lists/oss-security/2026/05/02/14
af854a3a-2127-422b-91ae-364da2661108 http://www.openwall.com/lists/oss-security/2026/05/02/15
af854a3a-2127-422b-91ae-364da2661108 http://www.openwall.com/lists/oss-security/2026/05/02/16
af854a3a-2127-422b-91ae-364da2661108 http://www.openwall.com/lists/oss-security/2026/05/02/17
af854a3a-2127-422b-91ae-364da2661108 http://www.openwall.com/lists/oss-security/2026/05/02/18
af854a3a-2127-422b-91ae-364da2661108 http://www.openwall.com/lists/oss-security/2026/05/02/19
af854a3a-2127-422b-91ae-364da2661108 http://www.openwall.com/lists/oss-security/2026/05/02/20
af854a3a-2127-422b-91ae-364da2661108 http://www.openwall.com/lists/oss-security/2026/05/02/21
af854a3a-2127-422b-91ae-364da2661108 http://www.openwall.com/lists/oss-security/2026/05/02/23
af854a3a-2127-422b-91ae-364da2661108 http://www.openwall.com/lists/oss-security/2026/05/02/24
af854a3a-2127-422b-91ae-364da2661108 http://www.openwall.com/lists/oss-security/2026/05/02/25
af854a3a-2127-422b-91ae-364da2661108 http://www.openwall.com/lists/oss-security/2026/05/03/3
af854a3a-2127-422b-91ae-364da2661108 http://www.openwall.com/lists/oss-security/2026/05/03/4
af854a3a-2127-422b-91ae-364da2661108 http://www.openwall.com/lists/oss-security/2026/05/03/10
af854a3a-2127-422b-91ae-364da2661108 http://www.openwall.com/lists/oss-security/2026/05/03/5
af854a3a-2127-422b-91ae-364da2661108 http://www.openwall.com/lists/oss-security/2026/05/03/6
af854a3a-2127-422b-91ae-364da2661108 http://www.openwall.com/lists/oss-security/2026/05/03/12
af854a3a-2127-422b-91ae-364da2661108 http://www.openwall.com/lists/oss-security/2026/05/03/13
af854a3a-2127-422b-91ae-364da2661108 http://www.openwall.com/lists/oss-security/2026/05/04/1
af854a3a-2127-422b-91ae-364da2661108 http://www.openwall.com/lists/oss-security/2026/05/04/2
af854a3a-2127-422b-91ae-364da2661108 http://www.openwall.com/lists/oss-security/2026/05/04/10
af854a3a-2127-422b-91ae-364da2661108 http://www.openwall.com/lists/oss-security/2026/05/04/11
af854a3a-2127-422b-91ae-364da2661108 http://www.openwall.com/lists/oss-security/2026/05/04/12
af854a3a-2127-422b-91ae-364da2661108 http://www.openwall.com/lists/oss-security/2026/05/04/13
af854a3a-2127-422b-91ae-364da2661108 http://www.openwall.com/lists/oss-security/2026/05/04/14
af854a3a-2127-422b-91ae-364da2661108 http://www.openwall.com/lists/oss-security/2026/05/04/8
af854a3a-2127-422b-91ae-364da2661108 http://www.openwall.com/lists/oss-security/2026/05/04/9
af854a3a-2127-422b-91ae-364da2661108 http://www.openwall.com/lists/oss-security/2026/05/04/24
af854a3a-2127-422b-91ae-364da2661108 http://www.openwall.com/lists/oss-security/2026/05/04/27
af854a3a-2127-422b-91ae-364da2661108 http://www.openwall.com/lists/oss-security/2026/05/04/28
af854a3a-2127-422b-91ae-364da2661108 http://www.openwall.com/lists/oss-security/2026/05/04/29
af854a3a-2127-422b-91ae-364da2661108 http://www.openwall.com/lists/oss-security/2026/05/04/31
af854a3a-2127-422b-91ae-364da2661108 http://www.openwall.com/lists/oss-security/2026/05/06/5
Mailing List http://www.openwall.com/lists/oss-security/2026/05/07/12
Mailing List http://www.openwall.com/lists/oss-security/2026/05/07/2
Mailing List http://www.openwall.com/lists/oss-security/2026/05/08/13
af854a3a-2127-422b-91ae-364da2661108 https://www.kb.cert.org/vuls/id/260001

Match rules

CPE URI Source package Min version Max version
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* linux_kernel >= 4.14 < 5.10.254
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* linux_kernel >= 5.11 < 5.15.204
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* linux_kernel >= 5.16 < 6.1.170
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* linux_kernel >= 6.2 < 6.6.137
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* linux_kernel >= 6.7 < 6.12.85
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* linux_kernel >= 6.13 < 6.18.22
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* linux_kernel >= 6.19 < 6.19.12
cpe:2.3:o:linux:linux_kernel:7.0:rc1:*:*:*:*:*:* linux_kernel == None == 7.0

Vulnerable and fixed packages

Source package Branch Version Maintainer Status
docker edge-community 29.4.2-r0 Jake Buchholz Göktürk <tomalok@gmail.com> fixed