CVE-2026-31671
- Source
- https://cve.org/CVERecord?id=CVE-2026-31671
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2026-31671.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2026-31671
- Downstream
- Published
- 2026-04-24T14:45:18.669Z
- Modified
- 2026-04-26T04:22:21.208855Z
- Summary
- xfrm_user: fix info leak in build_report()
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
xfrmuser: fix info leak in buildreport()
struct xfrmuserreport is a _u8 proto field followed by a struct xfrmselector which means there is three "empty" bytes of padding, but the padding is never zeroed before copying to userspace. Fix that up by zeroing the structure before setting individual member variables.
- Database specific
{ "cna_assigner": "Linux", "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/31xxx/CVE-2026-31671.json" }- References
-
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- https://git.kernel.org/stable/c/0616314b3b34f24cbb91da8c6bd8bcdc4c8592f9
- https://git.kernel.org/stable/c/0a30dceb0e1f0c480d2482e6d7cebf8aebb6eb72
- https://git.kernel.org/stable/c/6c55714c931051cd7f4839c19ce0867179fd22fe
- https://git.kernel.org/stable/c/716c546e88cfe49d841658240e10cb57bc50a2cc
- https://git.kernel.org/stable/c/d10119968d0e1f2b669604baf2a8b5fdb72fa6b4
- https://git.kernel.org/stable/c/d27c02eec529f78055a46a5c9e6c62684382b2d8
- https://git.kernel.org/stable/c/e0c8542c3d097ed4205ded51868195d5d6ddac62
- https://git.kernel.org/stable/c/ff5ee507302303b15859753c3e0d67d38fd12c88
- https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/31xxx/CVE-2026-31671.json
- https://nvd.nist.gov/vuln/detail/CVE-2026-31671
Affected packages
Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected ranges
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced97a64b4577ae2bc5599dbd008a3cd9e25de9b9f5Fixedd27c02eec529f78055a46a5c9e6c62684382b2d8Fixed716c546e88cfe49d841658240e10cb57bc50a2ccFixed0616314b3b34f24cbb91da8c6bd8bcdc4c8592f9Fixede0c8542c3d097ed4205ded51868195d5d6ddac62Fixedff5ee507302303b15859753c3e0d67d38fd12c88Fixed6c55714c931051cd7f4839c19ce0867179fd22feFixed0a30dceb0e1f0c480d2482e6d7cebf8aebb6eb72Fixedd10119968d0e1f2b669604baf2a8b5fdb72fa6b4
Linux / Kernel
Package
- Name
- Kernel
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced2.6.19Fixed5.10.253
- Type
- ECOSYSTEM
- Events
-
Introduced5.11.0Fixed5.15.203
- Type
- ECOSYSTEM
- Events
-
Introduced5.16.0Fixed6.1.169
- Type
- ECOSYSTEM
- Events
-
Introduced6.2.0Fixed6.6.135
- Type
- ECOSYSTEM
- Events
-
Introduced6.7.0Fixed6.12.82
- Type
- ECOSYSTEM
- Events
-
Introduced6.13.0Fixed6.18.23
- Type
- ECOSYSTEM
- Events
-
Introduced6.19.0Fixed6.19.13