Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2026-31431

Опубликовано: 22 апр. 2026
Источник: debian
EPSS Критический

Описание

In the Linux kernel, the following vulnerability has been resolved: crypto: algif_aead - Revert to operating out-of-place This mostly reverts commit 72548b093ee3 except for the copying of the associated data. There is no benefit in operating in-place in algif_aead since the source and destination come from different mappings. Get rid of all the complexity added for in-place operation and just copy the AD directly.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
linuxfixed6.19.12-1package

Примечания

  • https://git.kernel.org/linus/a664bf3d603dc3bdcf9ae47cc21e0daec706d7a5 (7.0-rc7)

  • https://copy.fail/

  • https://xint.io/blog/copy-fail-linux-distributions

  • https://xint.io/blog/copy-fail-pod-to-host

  • https://www.openwall.com/lists/oss-security/2026/04/29/23

EPSS

Процентиль: 100%
0.94016
Критический

Связанные уязвимости

ubuntu логотип

CVE-2026-31431

CVSS3: 7.8
ubuntu
2 месяца назад

In the Linux kernel, the following vulnerability has been resolved: crypto: algif_aead - Revert to operating out-of-place This mostly reverts commit 72548b093ee3 except for the copying of the associated data. There is no benefit in operating in-place in algif_aead since the source and destination come from different mappings. Get rid of all the complexity added for in-place operation and just copy the AD directly.

redhat логотип

CVE-2026-31431

CVSS3: 7.8
redhat
2 месяца назад

In the Linux kernel, the following vulnerability has been resolved: crypto: algif_aead - Revert to operating out-of-place This mostly reverts commit 72548b093ee3 except for the copying of the associated data. There is no benefit in operating in-place in algif_aead since the source and destination come from different mappings. Get rid of all the complexity added for in-place operation and just copy the AD directly.

nvd логотип

CVE-2026-31431

CVSS3: 7.8
nvd
2 месяца назад

In the Linux kernel, the following vulnerability has been resolved: crypto: algif_aead - Revert to operating out-of-place This mostly reverts commit 72548b093ee3 except for the copying of the associated data. There is no benefit in operating in-place in algif_aead since the source and destination come from different mappings. Get rid of all the complexity added for in-place operation and just copy the AD directly.

msrc логотип

CVE-2026-31431

msrc
около 2 месяцев назад

crypto: algif_aead - Revert to operating out-of-place

suse-cvrf логотип

openSUSE-SU-2026:20665-1

suse-cvrf
около 2 месяцев назад

Security update for the Linux Kernel

EPSS

Процентиль: 100%
0.94016
Критический