Integer Overflow in Linux Kernel's RDMA/irdma Functions
CVE-2026-31491

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 22 April 2026

What is CVE-2026-31491?

A vulnerability exists in the Linux kernel affecting the RDMA/irdma components, where an integer overflow can occur due to improper handling of size parameters. When the OS passes U32_MAX values for certain queue sizes (SQ, RQ, SRQ), it can lead to unexpected behavior, resulting in truncation of these sizes. As a result, the system erroneously returns success even in failure scenarios, which may compromise system integrity. Recent updates have strengthened depth calculation functions and enforced boundary checking to mitigate these risks.

Affected Version(s)

Linux 563e1feb5f6ed579acb55850f1bbb831aecf645a < 3f08351de5ca4f2f724b86ad252fbc21289467e1

Linux 563e1feb5f6ed579acb55850f1bbb831aecf645a

References

https://git.kernel.org/stable/c/3f08351de5ca4f2f724b86ad2...

https://git.kernel.org/stable/c/cbd852f5700eb3f64392452fa...

https://git.kernel.org/stable/c/e37afcb56ae070477741fe2d6...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Apr 22, 2026
Vulnerability Reserved
Mar 9, 2026

CVE-2026-31491 Data

JSON