Buffer Overflow in Linux Kernel's AF_RXRPC Procfs Helpers
CVE-2026-31630

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 24 April 2026

What is CVE-2026-31630?

A vulnerability in the Linux Kernel's AF_RXRPC procfs helpers could lead to a buffer overflow due to insufficiently sized buffers for socket address formatting. The existing stack buffers are fixed at 50 bytes, which are inadequate for the maximum formatted length of IPv6 addresses with ports. This can expose systems to risks when handling certain socket addresses, especially in cases involving ISATAP formatted addresses. The vulnerability has been addressed by resizing the buffers based on the formatter's maximum textual form and updating relevant code calls.

Affected Version(s)

Linux 75b54cb57ca34cbe7a87c6ac757c55360a624590

Linux 75b54cb57ca34cbe7a87c6ac757c55360a624590 < 10ebed83f9f6414af4e85bc85ffaeda7effdd874

Linux 75b54cb57ca34cbe7a87c6ac757c55360a624590

References

https://git.kernel.org/stable/c/db297c78ce537c9ac96f0eda9...

https://git.kernel.org/stable/c/10ebed83f9f6414af4e85bc85...

https://git.kernel.org/stable/c/a44ce6aa2efb61fe44f2cfab7...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Apr 24, 2026
Vulnerability Reserved
Mar 9, 2026

CVE-2026-31630 Data

JSON