CVE-2026-31671
N/A
N/A
Summary
In the Linux kernel, the following vulnerability has been resolved:
xfrm_user: fix info leak in build_report()
struct xfrm_user_report is a __u8 proto field followed by a struct xfrm_selector which means there is three "empty" bytes of padding, but the padding is never zeroed before copying to userspace. Fix that up by zeroing the structure before setting individual member variables.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Linux | Linux | 97a64b4577ae2bc5599dbd008a3cd9e25de9b9f5 < d27c02eec529f78055a46a5c9e6c62684382b2d8 | affected |
| Linux | Linux | 97a64b4577ae2bc5599dbd008a3cd9e25de9b9f5 < 716c546e88cfe49d841658240e10cb57bc50a2cc | affected |
| Linux | Linux | 97a64b4577ae2bc5599dbd008a3cd9e25de9b9f5 < 0616314b3b34f24cbb91da8c6bd8bcdc4c8592f9 | affected |
| Linux | Linux | 97a64b4577ae2bc5599dbd008a3cd9e25de9b9f5 < e0c8542c3d097ed4205ded51868195d5d6ddac62 | affected |
| Linux | Linux | 97a64b4577ae2bc5599dbd008a3cd9e25de9b9f5 < ff5ee507302303b15859753c3e0d67d38fd12c88 | affected |
| Linux | Linux | 97a64b4577ae2bc5599dbd008a3cd9e25de9b9f5 < 6c55714c931051cd7f4839c19ce0867179fd22fe | affected |
| Linux | Linux | 97a64b4577ae2bc5599dbd008a3cd9e25de9b9f5 < 0a30dceb0e1f0c480d2482e6d7cebf8aebb6eb72 | affected |
| Linux | Linux | 97a64b4577ae2bc5599dbd008a3cd9e25de9b9f5 < d10119968d0e1f2b669604baf2a8b5fdb72fa6b4 | affected |
| Linux | Linux | 2.6.19 | affected |
| Linux | Linux | 0 < 2.6.19 | unaffected |
| Linux | Linux | 5.10.253 <= 5.10.* | unaffected |
| Linux | Linux | 5.15.203 <= 5.15.* | unaffected |
| Linux | Linux | 6.1.169 <= 6.1.* | unaffected |
| Linux | Linux | 6.6.135 <= 6.6.* | unaffected |
| Linux | Linux | 6.12.82 <= 6.12.* | unaffected |
| Linux | Linux | 6.18.23 <= 6.18.* | unaffected |
| Linux | Linux | 6.19.13 <= 6.19.* | unaffected |
| Linux | Linux | 7.0 <= * | unaffected |
Weaknesses
References
- https://git.kernel.org/stable/c/d27c02eec529f78055a46a5c9e6c62684382b2d8
- https://git.kernel.org/stable/c/716c546e88cfe49d841658240e10cb57bc50a2cc
- https://git.kernel.org/stable/c/0616314b3b34f24cbb91da8c6bd8bcdc4c8592f9
- https://git.kernel.org/stable/c/e0c8542c3d097ed4205ded51868195d5d6ddac62
- https://git.kernel.org/stable/c/ff5ee507302303b15859753c3e0d67d38fd12c88
- https://git.kernel.org/stable/c/6c55714c931051cd7f4839c19ce0867179fd22fe
- https://git.kernel.org/stable/c/0a30dceb0e1f0c480d2482e6d7cebf8aebb6eb72
- https://git.kernel.org/stable/c/d10119968d0e1f2b669604baf2a8b5fdb72fa6b4
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.