Buffer Overflow Vulnerability in Linux Kernel Hypervisor Driver
CVE-2026-31786

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 30 April 2026

What is CVE-2026-31786?

A buffer overflow vulnerability was identified in the Linux kernel within the hypervisor driver located in drivers/xen/sys-hypervisor.c. This issue arises due to the improper handling of the build ID returned by the HYPERVISOR_xen_version function, which is neither NUL terminated nor a valid string. The affected function, buildid_show, utilizes sprintf, which attempts to read and copy data until a NUL terminator is found, potentially leading to overflow. The solution replaces sprintf with memcpy to correctly handle the buffer, ensuring that no overflow occurs during data operations.

Affected Version(s)

Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2

Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 8288d031a01dbacfde3fc643f7be3d23504de64d

Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2

References

https://git.kernel.org/stable/c/e3af585e1728c917682b6a3de...

https://git.kernel.org/stable/c/8288d031a01dbacfde3fc643f...

https://git.kernel.org/stable/c/f458ba102da97fafca1063270...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Apr 30, 2026
Vulnerability Reserved
Mar 9, 2026

CVE-2026-31786 Data

JSON