CVE-2026-31431

HIGH CISA KEV EPSS 99.9%
Published Apr 22, 20262mo ago · Modified Jun 17, 20261w ago
7.8 CVSS 3.1
High
Find Similar
Published Apr 22, 2026 2mo ago
Last Modified Jun 17, 2026 1w ago
KEV Listed May 1, 2026 2mo ago
KEV Due May 15, 2026 46d overdue

Description

In the Linux kernel, the following vulnerability has been resolved: crypto: algif_aead - Revert to operating out-of-place This mostly reverts commit 72548b093ee3 except for the copying of the associated data. There is no benefit in operating in-place in algif_aead since the source and destination come from different mappings. Get rid of all the complexity added for in-place operation and just copy the AD directly.

CVSS Details

Base Score
7.8
Exploitability
1.8
Impact
5.9
Vector string
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Attack Vector Local
Attack Complexity Low
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality High
Integrity High
Availability High

Threat Intelligence

CISA Known Exploited Overdue 46d
Added
May 1, 2026
Due
May 15, 2026

"Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.

EPSS Exploit Probability
99.9% percentile
Exploit & Patch Status
Actively Exploited (KEV)
Patch Available

Weaknesses 1

CWE-669

Affected Products 182

VendorProductVersionRange
linuxlinux_kernel*≥4.14  –  <5.10.254
linuxlinux_kernel*≥5.11  –  <5.15.204
linuxlinux_kernel*≥5.16  –  <6.1.170
linuxlinux_kernel*≥6.2  –  <6.6.137
linuxlinux_kernel*≥6.7  –  <6.12.85
linuxlinux_kernel*≥6.13  –  <6.18.22
linuxlinux_kernel*≥6.19  –  <6.19.12
linuxlinux_kernel7.0any
linuxlinux_kernel7.0any
linuxlinux_kernel7.0any
linuxlinux_kernel7.0any
linuxlinux_kernel7.0any
linuxlinux_kernel7.0any
redhatopenshift_container_platform4.0any
redhatenterprise_linux8.0any
redhatenterprise_linux9.0any
redhatenterprise_linux10.0any
redhatenterprise_linux10.1any
amazonamazon_linux*any
canonicalubuntu_linux*any
debiandebian_linux11.0any
debiandebian_linux12.0any
debiandebian_linux13.0any
opensuseleap15.3any
opensuseleap15.4any
opensuseleap15.5any
opensuseleap15.6any
susecaas_platform4.0any
suseenterprise_storage6.0any
suseenterprise_storage7.0any
suseenterprise_storage7.1any
susemanager_proxy4.0any
susemanager_proxy4.1any
susemanager_proxy4.2any
susemanager_proxy4.3any
susemanager_retail_branch_server4.0any
susemanager_retail_branch_server4.1any
susemanager_retail_branch_server4.2any
susemanager_retail_branch_server4.3any
susemanager_server4.0any
susemanager_server4.1any
susemanager_server4.2any
susemanager_server4.3any
suseopenstack_cloud9.0any
suseopenstack_cloud_crowbar9.0any
susebasesystem_module15any
susebasesystem_module15any
susebasesystem_module15any
susebasesystem_module15any
susebasesystem_module15any
susebasesystem_module15any
susebasesystem_module15any
susedevelopment_tools_module15any
susedevelopment_tools_module15any
susedevelopment_tools_module15any
susedevelopment_tools_module15any
susedevelopment_tools_module15any
susedevelopment_tools_module15any
susedevelopment_tools_module15any
suselegacy_module15any
suselinux_enterprise_desktop11any
suselinux_enterprise_desktop12any
suselinux_enterprise_desktop15any
suselinux_enterprise_desktop15any
suselinux_enterprise_desktop15any
suselinux_enterprise_desktop15any
suselinux_enterprise_desktop15any
suselinux_enterprise_desktop15any
suselinux_enterprise_desktop15any
suselinux_enterprise_high_availability_extension15any
suselinux_enterprise_high_availability_extension15any
suselinux_enterprise_high_availability_extension15any
suselinux_enterprise_high_availability_extension16.0any
suselinux_enterprise_high_performance_computing15.0any
suselinux_enterprise_high_performance_computing15.0any
suselinux_enterprise_high_performance_computing15.0any
suselinux_enterprise_high_performance_computing15.0any
suselinux_enterprise_high_performance_computing15.0any
suselinux_enterprise_high_performance_computing15.0any
suselinux_enterprise_high_performance_computing15.0any
suselinux_enterprise_high_performance_computing15.0any
suselinux_enterprise_high_performance_computing15.0any
suselinux_enterprise_high_performance_computing15.0any
suselinux_enterprise_high_performance_computing15.0any
suselinux_enterprise_high_performance_computing15.0any
suselinux_enterprise_high_performance_computing15.0any
suselinux_enterprise_high_performance_computing15.0any
suselinux_enterprise_high_performance_computing15.0any
suselinux_enterprise_high_performance_computing15.0any
suselinux_enterprise_high_performance_computing15.0any
suselinux_enterprise_live_patching12any
suselinux_enterprise_live_patching15any
suselinux_enterprise_live_patching15any
suselinux_enterprise_live_patching15any
suselinux_enterprise_live_patching15any
suselinux_enterprise_micro5.0any
suselinux_enterprise_micro5.1any
suselinux_enterprise_micro5.2any
suselinux_enterprise_micro5.2any
suselinux_enterprise_micro5.3any
suselinux_enterprise_micro5.3any
suselinux_enterprise_micro5.4any
suselinux_enterprise_micro5.4any
suselinux_enterprise_micro5.5any
suselinux_enterprise_real_time15.0any
suselinux_enterprise_real_time15.0any
suselinux_enterprise_real_time15.0any
suselinux_enterprise_real_time15.0any
suselinux_enterprise_real_time15.0any
suselinux_enterprise_real_time15.0any
suselinux_enterprise_server11any
suselinux_enterprise_server11any
suselinux_enterprise_server11any
suselinux_enterprise_server12any
suselinux_enterprise_server12any
suselinux_enterprise_server12any
suselinux_enterprise_server12any
suselinux_enterprise_server12any
suselinux_enterprise_server12any
suselinux_enterprise_server12any
suselinux_enterprise_server15any
suselinux_enterprise_server15any
suselinux_enterprise_server15any
suselinux_enterprise_server15any
suselinux_enterprise_server15any
suselinux_enterprise_server15any
suselinux_enterprise_server15any
suselinux_enterprise_server15any
suselinux_enterprise_server15any
suselinux_enterprise_server15any
suselinux_enterprise_server15any
suselinux_enterprise_server15any
suselinux_enterprise_server15any
suselinux_enterprise_server15any
suselinux_enterprise_server15any
suselinux_enterprise_server15any
suselinux_enterprise_server15any
suselinux_enterprise_server15any
suselinux_enterprise_server15any
suselinux_enterprise_server15any
suselinux_enterprise_server15any
suselinux_enterprise_server15any
suselinux_enterprise_server15any
suselinux_enterprise_server16.0any
suselinux_enterprise_server16.0any
suselinux_enterprise_server16.1any
suselinux_enterprise_server16.1any
suselinux_enterprise_workstation_extension15any
suselinux_micro6.0any
suselinux_micro6.1any
suselinux_micro6.2any
susepublic_cloud_module15any
susepublic_cloud_module15any
suserealtime_module15any
suserealtime_module15any
suserealtime_module15any
suserealtime_module15any
suserealtime_module15any
nixosnixos* <25.11
aristacloudvision_agni*≥2024.4.0  –  ≤2025.2.2
aristacloudvision_portal*≥2024.2.0  –  ≤2026.1.0
aristavelocloud_edge*≥4.5.0  –  ≤6.4.1
aristavelocloud_gateway*any
vmwarevelocloud_orchestrator*any
aristanetvisor_os* <7.1.0
aristanetvisor_os7.1.0any
aristanetvisor_os7.1.0any
siemenssimatic_s7-1500_cpu_1518-4_pn\/dp_mfp_firmware*≥3.1.5
siemenssimatic_s7-1500_cpu_1518-4_pn\/dp_mfp*any
siemenssimatic_s7-1500_cpu_1518f-4_pn\/dp_mfp_firmware*≥3.1.5
siemenssimatic_s7-1500_cpu_1518f-4_pn\/dp_mfp*any
siemenssiplus_s7-1500_cpu_1518-4_pn\/dp_mfp_firmware*≥3.1.5
siemenssiplus_s7-1500_cpu_1518-4_pn\/dp_mfp*any
siemenssimatic_s7-1500_tm_mfp_firmware* <1.1
siemenssimatic_s7-1500_tm_mfp*any
canonicalubuntu_linux14.04any
canonicalubuntu_linux16.04any
canonicalubuntu_linux18.04any
canonicalubuntu_linux20.04any
canonicalubuntu_linux22.04any
canonicalubuntu_linux24.04any
canonicalubuntu_linux25.10any

References 86

  • openwall.com http://www.openwall.com/lists/oss-security/2026/04/29/23
    ExploitMailing ListPatch
  • openwall.com http://www.openwall.com/lists/oss-security/2026/04/29/25
    Mailing ListPatch
  • openwall.com http://www.openwall.com/lists/oss-security/2026/04/29/26
    ExploitMailing ListPatch
  • openwall.com http://www.openwall.com/lists/oss-security/2026/04/30/10
    Mailing ListPatch
  • openwall.com http://www.openwall.com/lists/oss-security/2026/04/30/11
    Mailing ListPatch
  • openwall.com http://www.openwall.com/lists/oss-security/2026/04/30/12
    Mailing ListPatch
  • openwall.com http://www.openwall.com/lists/oss-security/2026/04/30/14
    Mailing ListPatch
  • openwall.com http://www.openwall.com/lists/oss-security/2026/04/30/15
    Mailing ListPatch
  • openwall.com http://www.openwall.com/lists/oss-security/2026/04/30/16
    Mailing ListPatch
  • openwall.com http://www.openwall.com/lists/oss-security/2026/04/30/17
    Mailing List
  • openwall.com http://www.openwall.com/lists/oss-security/2026/04/30/18
    ExploitMailing List
  • openwall.com http://www.openwall.com/lists/oss-security/2026/04/30/2
    Mailing List
  • openwall.com http://www.openwall.com/lists/oss-security/2026/04/30/20
    Mailing List
  • openwall.com http://www.openwall.com/lists/oss-security/2026/04/30/5
    ExploitMailing ListPatch
  • openwall.com http://www.openwall.com/lists/oss-security/2026/04/30/6
    Mailing List
  • openwall.com http://www.openwall.com/lists/oss-security/2026/05/01/10
    Mailing List
  • openwall.com http://www.openwall.com/lists/oss-security/2026/05/01/12
    Mailing List
  • openwall.com http://www.openwall.com/lists/oss-security/2026/05/01/15
    Mailing List
  • openwall.com http://www.openwall.com/lists/oss-security/2026/05/01/16
    Mailing List
  • openwall.com http://www.openwall.com/lists/oss-security/2026/05/01/17
    Mailing List
  • openwall.com http://www.openwall.com/lists/oss-security/2026/05/01/18
    Mailing List
  • openwall.com http://www.openwall.com/lists/oss-security/2026/05/01/2
    Mailing List
  • openwall.com http://www.openwall.com/lists/oss-security/2026/05/01/22
    Mailing List
  • openwall.com http://www.openwall.com/lists/oss-security/2026/05/01/23
    Mailing List
  • openwall.com http://www.openwall.com/lists/oss-security/2026/05/01/24
    Mailing List
  • openwall.com http://www.openwall.com/lists/oss-security/2026/05/01/3
    Mailing List
  • openwall.com http://www.openwall.com/lists/oss-security/2026/05/02/14
    Mailing List
  • openwall.com http://www.openwall.com/lists/oss-security/2026/05/02/15
    Mailing List
  • openwall.com http://www.openwall.com/lists/oss-security/2026/05/02/16
    Mailing List
  • openwall.com http://www.openwall.com/lists/oss-security/2026/05/02/17
    Mailing List
  • openwall.com http://www.openwall.com/lists/oss-security/2026/05/02/18
    Mailing List
  • openwall.com http://www.openwall.com/lists/oss-security/2026/05/02/19
    Mailing List
  • openwall.com http://www.openwall.com/lists/oss-security/2026/05/02/20
    Mailing List
  • openwall.com http://www.openwall.com/lists/oss-security/2026/05/02/21
    Mailing List
  • openwall.com http://www.openwall.com/lists/oss-security/2026/05/02/23
    Mailing List
  • openwall.com http://www.openwall.com/lists/oss-security/2026/05/02/24
    Mailing List
  • openwall.com http://www.openwall.com/lists/oss-security/2026/05/02/25
    Mailing List
  • openwall.com http://www.openwall.com/lists/oss-security/2026/05/02/4
    Mailing List
  • openwall.com http://www.openwall.com/lists/oss-security/2026/05/02/5
    Mailing List
  • openwall.com http://www.openwall.com/lists/oss-security/2026/05/02/6
    Mailing List
  • openwall.com http://www.openwall.com/lists/oss-security/2026/05/02/7
    Mailing List
  • openwall.com http://www.openwall.com/lists/oss-security/2026/05/02/8
    Mailing List
  • openwall.com http://www.openwall.com/lists/oss-security/2026/05/03/10
    Mailing List
  • openwall.com http://www.openwall.com/lists/oss-security/2026/05/03/12
    Mailing List
  • openwall.com http://www.openwall.com/lists/oss-security/2026/05/03/13
    Mailing List
  • openwall.com http://www.openwall.com/lists/oss-security/2026/05/03/3
    Mailing List
  • openwall.com http://www.openwall.com/lists/oss-security/2026/05/03/4
    Mailing List
  • openwall.com http://www.openwall.com/lists/oss-security/2026/05/03/5
    Mailing List
  • openwall.com http://www.openwall.com/lists/oss-security/2026/05/03/6
    Mailing List
  • openwall.com http://www.openwall.com/lists/oss-security/2026/05/04/1
    Mailing List
  • openwall.com http://www.openwall.com/lists/oss-security/2026/05/04/10
    Mailing List
  • openwall.com http://www.openwall.com/lists/oss-security/2026/05/04/11
    Mailing List
  • openwall.com http://www.openwall.com/lists/oss-security/2026/05/04/12
    Mailing List
  • openwall.com http://www.openwall.com/lists/oss-security/2026/05/04/13
    Mailing List
  • openwall.com http://www.openwall.com/lists/oss-security/2026/05/04/14
    Mailing List
  • openwall.com http://www.openwall.com/lists/oss-security/2026/05/04/2
    Mailing List
  • openwall.com http://www.openwall.com/lists/oss-security/2026/05/04/24
    Mailing List
  • openwall.com http://www.openwall.com/lists/oss-security/2026/05/04/27
    Mailing List
  • openwall.com http://www.openwall.com/lists/oss-security/2026/05/04/28
    Mailing List
  • openwall.com http://www.openwall.com/lists/oss-security/2026/05/04/29
    Mailing List
  • openwall.com http://www.openwall.com/lists/oss-security/2026/05/04/31
    Mailing List
  • openwall.com http://www.openwall.com/lists/oss-security/2026/05/04/8
    Mailing List
  • openwall.com http://www.openwall.com/lists/oss-security/2026/05/04/9
    Mailing List
  • openwall.com http://www.openwall.com/lists/oss-security/2026/05/06/5
    Mailing List
  • openwall.com http://www.openwall.com/lists/oss-security/2026/05/07/12
    Mailing List
  • openwall.com http://www.openwall.com/lists/oss-security/2026/05/07/2
    Mailing List
  • openwall.com http://www.openwall.com/lists/oss-security/2026/05/08/13
    Mailing List
  • openwall.com http://www.openwall.com/lists/oss-security/2026/05/18/3
    Mailing List
  • access.redhat.com https://access.redhat.com/security/cve/cve-2026-31431#cve-details-mitigation
    Third Party Advisory
  • cert-portal.siemens.com https://cert-portal.siemens.com/productcert/html/ssa-082556.html
    Third Party Advisory
  • cert-portal.siemens.com https://cert-portal.siemens.com/productcert/html/ssa-265688.html
    Third Party Advisory
  • copy.fail https://copy.fail
    Exploit
  • git.kernel.org https://git.kernel.org/stable/c/19d43105a97be0810edbda875f2cd03f30dc130c
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/3115af9644c342b356f3f07a4dd1c8905cd9a6fc
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/893d22e0135fa394db81df88697fba6032747667
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/8b88d99341f139e23bdeb1027a2a3ae10d341d82
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/961cfa271a918ad4ae452420e7c303149002875b
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/a664bf3d603dc3bdcf9ae47cc21e0daec706d7a5
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/ce42ee423e58dffa5ec03524054c9d8bfd4f6237
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/fafe0fa2995a0f7073c1c358d7d3145bcc9aedd8
    Patch
  • github.com https://github.com/theori-io/copy-fail-CVE-2026-31431
    Exploit
  • lore.kernel.org https://lore.kernel.org/linux-cve-announce/2026042214-CVE-2026-31431-3d65@gregkh/
    Vendor Advisory
  • websec.net https://websec.net/blog/cve-2026-31431-linux-algifaead-page-cache-write-to-root-69f38a4ccddd2db1f520f170
    ExploitThird Party Advisory
  • cisa.gov https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2026-31431
    US Government Resource
  • kb.cert.org https://www.kb.cert.org/vuls/id/260001
    Third Party Advisory
  • xint.io https://xint.io/blog/copy-fail-linux-distributions#the-fix-6
    ExploitPatchThird Party Advisory

Remediation

  • openwall.com http://www.openwall.com/lists/oss-security/2026/04/29/23
    ExploitMailing ListPatch
  • openwall.com http://www.openwall.com/lists/oss-security/2026/04/29/25
    Mailing ListPatch
  • openwall.com http://www.openwall.com/lists/oss-security/2026/04/29/26
    ExploitMailing ListPatch
  • openwall.com http://www.openwall.com/lists/oss-security/2026/04/30/10
    Mailing ListPatch
  • openwall.com http://www.openwall.com/lists/oss-security/2026/04/30/11
    Mailing ListPatch
  • openwall.com http://www.openwall.com/lists/oss-security/2026/04/30/12
    Mailing ListPatch
  • openwall.com http://www.openwall.com/lists/oss-security/2026/04/30/14
    Mailing ListPatch
  • openwall.com http://www.openwall.com/lists/oss-security/2026/04/30/15
    Mailing ListPatch
  • openwall.com http://www.openwall.com/lists/oss-security/2026/04/30/16
    Mailing ListPatch
  • openwall.com http://www.openwall.com/lists/oss-security/2026/04/30/5
    ExploitMailing ListPatch
  • git.kernel.org https://git.kernel.org/stable/c/19d43105a97be0810edbda875f2cd03f30dc130c
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/3115af9644c342b356f3f07a4dd1c8905cd9a6fc
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/893d22e0135fa394db81df88697fba6032747667
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/8b88d99341f139e23bdeb1027a2a3ae10d341d82
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/961cfa271a918ad4ae452420e7c303149002875b
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/a664bf3d603dc3bdcf9ae47cc21e0daec706d7a5
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/ce42ee423e58dffa5ec03524054c9d8bfd4f6237
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/fafe0fa2995a0f7073c1c358d7d3145bcc9aedd8
    Patch
  • xint.io https://xint.io/blog/copy-fail-linux-distributions#the-fix-6
    ExploitPatchThird Party Advisory