Null Pointer Dereference in Linux Kernel Affecting Shared Blocks
CVE-2026-31422

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 13 April 2026

What is CVE-2026-31422?

A null pointer dereference vulnerability in the Linux kernel occurs when the flow_change function attempts to dereference a NULL pointer associated with shared blocks. Specifically, when flow filters are created without a fully qualified base class on these shared blocks, the lack of proper validation leads to a dereference of a NULL pointer, resulting in potential system instability. This vulnerability can be exploited when the function tcf_block_q dereferences the q->handle, which may not be initialized for shared blocks. Implementing a check with tcf_block_shared can prevent this dereference and appropriately handle shared block scenarios.

Affected Version(s)

Linux 1abf272022cf1d18469405f47b4ec49c6a3125db

Linux 1abf272022cf1d18469405f47b4ec49c6a3125db < 4a09f72007201c9f667dc47f64517ec23eea65e5

Linux 1abf272022cf1d18469405f47b4ec49c6a3125db < 9bf5fc36a43f7b8b5507c96e74fb81f1e8b4957e

References

https://git.kernel.org/stable/c/cc707a4fd4c3b6ab2722e06bc...

https://git.kernel.org/stable/c/4a09f72007201c9f667dc47f6...

https://git.kernel.org/stable/c/9bf5fc36a43f7b8b5507c96e7...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Apr 13, 2026
Vulnerability Reserved
Mar 9, 2026

CVE-2026-31422 Data

JSON