CVE-2026-31671 in Linuxinfo

Zusammenfassung

von MITRE • 24.04.2026

In the Linux kernel, the following vulnerability has been resolved:

xfrm_user: fix info leak in build_report()

struct xfrm_user_report is a __u8 proto field followed by a struct xfrm_selector which means there is three "empty" bytes of padding, but the padding is never zeroed before copying to userspace. Fix that up by zeroing the structure before setting individual member variables.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Zuständig

Linux

Reservieren

09.03.2026

Veröffentlichung

24.04.2026

Moderieren

akzeptiert

Eintrag

VDB-359472

CPE

bereit

CWE

CWE-200 (bestätigt)

CVSS

3.5 (VulDB)

EPSS

0.00014

KEV

nein

Aktivitäten

very low

Sektor

Agriculture, Hospital, ...

Quellen

MITRE	https://www.cve.org/CVERecord?id=CVE-2026-31671
NVD	https://nvd.nist.gov/vuln/detail/CVE-2026-31671
CVE Details	https://www.cvedetails.com/cve/CVE-2026-31671/

◂ Zurück Übersicht Weiter ▸

Might our Artificial Intelligence support you?

Check our Alexa App!