Heap Buffer Overflow in Linux Kernel due to RxGK Token Loading Issue
CVE-2026-31641

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 24 April 2026

What is CVE-2026-31641?

A vulnerability in the Linux kernel related to RxGK token loading could lead to a heap buffer overflow. The issue arises when rxrpc_preparse_xdr_yfs_rxgk() reads raw key and ticket lengths as u32 values and incorrectly processes them, especially for lengths that exceed specific thresholds. This flaw enables an unprivileged user to exploit the system by invoking an add_key() call, potentially resulting in unauthorized memory access. The vulnerability has been addressed by implementing stricter checks on raw lengths before processing and optimizing memory allocation to mitigate the risk.

Affected Version(s)

Linux 0ca100ff4df64f5d0f6c1dd5080c3e096786bea6 < 3e04596cba8a86cbff9c3f4bf0a524a3a488773c

Linux 0ca100ff4df64f5d0f6c1dd5080c3e096786bea6 < 49875b360c2b83a3c226e189c502e501d83e6445

Linux 0ca100ff4df64f5d0f6c1dd5080c3e096786bea6

References

https://git.kernel.org/stable/c/3e04596cba8a86cbff9c3f4bf...

https://git.kernel.org/stable/c/49875b360c2b83a3c226e189c...

https://git.kernel.org/stable/c/d179a868dd755b0cfcf7582e0...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Apr 24, 2026
Vulnerability Reserved
Mar 9, 2026

CVE-2026-31641 Data

JSON