Linux Kernel Vulnerability in Networking Management by Linux Foundation
CVE-2026-31516

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 22 April 2026

What is CVE-2026-31516?

In the Linux kernel, a race condition vulnerability could occur during the processing of XFRM_MSG_NEWSPDINFO requests. When these requests queue the per-net work item policy_hthresh.work onto the system workqueue, there is a risk that the associated networking namespace could be torn down before the queued work executes. If this occurs, the xfrm_hash_rebuild() function may dereference a structure that has already been freed, leading to potential system instability and corruption. To address this vulnerability, the synchronization of policy_hthresh.work with the teardown process of the network namespace is essential, ensuring that queued work does not run after the associated structure has been deallocated.

Affected Version(s)

Linux 880a6fab8f6ba5b5abe59ea68533202ddea1012c < 56ea2257b83ee29a543f158159e3d1abc1e3e4fe

Linux 880a6fab8f6ba5b5abe59ea68533202ddea1012c < 8854e9367465d784046362698731c1111e3b39b8

Linux 880a6fab8f6ba5b5abe59ea68533202ddea1012c < 4e2e77843fef473ef47e322d52436d8308582a96

References

https://git.kernel.org/stable/c/56ea2257b83ee29a543f15815...

https://git.kernel.org/stable/c/8854e9367465d784046362698...

https://git.kernel.org/stable/c/4e2e77843fef473ef47e322d5...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Apr 22, 2026
Vulnerability Reserved
Mar 9, 2026

CVE-2026-31516 Data

JSON