Network Device Management Flaw in Open vSwitch by Linux Foundation
CVE-2026-31508

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 22 April 2026

What is CVE-2026-31508?

A vulnerability has been identified in Open vSwitch, which impacts the Linux kernel's handling of network devices. This flaw occurs during the unregistration process of OVS ports, where improper sequence handling may lead to potential system crashes. Specifically, if the flag IFF_OVS_DATAPATH is cleared and the process is preempted before full unregistration, the destruction of the network device can complete prematurely, causing a general protection fault. The kernel's runtime may invoke unstable behavior, resulting in a system crash or compromise. Users of affected Open vSwitch versions should update their installations promptly to avoid potential exploitation.

Affected Version(s)

Linux b823c3344d5446b720227ba561df10a4f0add515

Linux 052e5db5be4576e0a8ef1460b210da5f328f4cd1 < 33609454be4f582e686a4bf13d4482a5ca0f6c4b

Linux c98263d5ace597c096a7a60aeef790da7b54979e < 5fdeaf591a0942772c2d18ff3563697a49ad01c6

References

https://git.kernel.org/stable/c/df3c95be76103604e752131d9...

https://git.kernel.org/stable/c/33609454be4f582e686a4bf13...

https://git.kernel.org/stable/c/5fdeaf591a0942772c2d18ff3...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Apr 22, 2026
Vulnerability Reserved
Mar 9, 2026

CVE-2026-31508 Data

JSON