CVE-2026-31417

Summary

In the Linux kernel, the following vulnerability has been resolved:

net/x25: Fix overflow when accumulating packets

Add a check to ensure that x25_sock.fraglen does not overflow.

The fraglen also needs to be resetted when purging fragment_queue in x25_clear_queues().

Affected Software

VendorProductVersion RangeStatus
LinuxLinux1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 96fc16370b0bceb289c7e0479bd0540b81e257aaaffected
LinuxLinux1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 798d613afb64b01a203f448fb0f43c37c6afe79daffected
LinuxLinux1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 6e568835ea54a3e1d08e310e34f95d434e739477affected
LinuxLinux1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 1734bd85c5e0a7a801295b729efb56b009cb8fc3affected
LinuxLinux1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 4e2d1bcef78d21247fe8fef13bc7ed95885df2b5affected
LinuxLinux1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 8c92969c197b91c134be27dc3afb64ab468853a9affected
LinuxLinux1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < f953f11ccf4afe6feb635c08145f4240d9a6b544affected
LinuxLinux1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < a1822cb524e89b4cd2cf0b82e484a2335496a6d9affected
LinuxLinux2.6.12affected
LinuxLinux0 < 2.6.12unaffected
LinuxLinux5.10.253 <= 5.10.*unaffected
LinuxLinux5.15.203 <= 5.15.*unaffected
LinuxLinux6.1.168 <= 6.1.*unaffected
LinuxLinux6.6.134 <= 6.6.*unaffected
LinuxLinux6.12.81 <= 6.12.*unaffected
LinuxLinux6.18.22 <= 6.18.*unaffected
LinuxLinux6.19.12 <= 6.19.*unaffected
LinuxLinux7.0 <= *unaffected

Weaknesses

References