Linearization Issue in Linux Kernel's IP-TFS Handling
CVE-2026-31517

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 22 April 2026

What is CVE-2026-31517?

A vulnerability exists in the Linux kernel's IP-TFS handling where the system may experience a panic due to improper handling of non-linear socket buffers during packet reassembly. When a zero-copy method fails, the attempt to append data can lead to invoking skb_put on a non-linear socket buffer, causing an SKB_LINEAR_ASSERT failure. This can result in system instability, necessitating a check for non-linearity and appropriate linearization to ensure smooth reassembly of packets.

Affected Version(s)

Linux 5f2b6a9095743a6bf1f34c43c4fe78fa8bdf5ad7 < 33a7b36268933c75bdc355e5531951e0ea9f1951

Linux 5f2b6a9095743a6bf1f34c43c4fe78fa8bdf5ad7 < 7fdfe8f6efeb0e1200e22a903f2471539f54522b

Linux 5f2b6a9095743a6bf1f34c43c4fe78fa8bdf5ad7 < 0b352f83cabfefdaafa806d6471f0eca117dc7d5

References

https://git.kernel.org/stable/c/33a7b36268933c75bdc355e55...

https://git.kernel.org/stable/c/7fdfe8f6efeb0e1200e22a903...

https://git.kernel.org/stable/c/0b352f83cabfefdaafa806d64...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Apr 22, 2026
Vulnerability Reserved
Mar 9, 2026

CVE-2026-31517 Data

JSON