Vulnerability in Linux Kernel Affecting Crypto Operations
CVE-2026-31431

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 22 April 2026

What is CVE-2026-31431?

A vulnerability has been identified in the Linux kernel's crypto subsystem, specifically within the algif_aead component. This issue arises from an unnecessary complexity in operating in-place, which has been reverted for improved security and performance. The change eliminates the need for in-place operations, allowing for safer and more efficient handling of associated data by copying it directly. Users are encouraged to update their systems to the latest versions to mitigate potential risks.

Affected Version(s)

Linux 72548b093ee38a6d4f2a19e6ef1948ae05c181f7

References

https://git.kernel.org/stable/c/fafe0fa2995a0f7073c1c358d...

https://git.kernel.org/stable/c/ce42ee423e58dffa5ec035240...

https://git.kernel.org/stable/c/a664bf3d603dc3bdcf9ae47cc...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Apr 22, 2026
Vulnerability Reserved
Mar 9, 2026

CVE-2026-31431 Data

JSON