Vulnerability Description
In the Linux kernel, the following vulnerability has been resolved: xfrm_user: fix info leak in build_report() struct xfrm_user_report is a __u8 proto field followed by a struct xfrm_selector which means there is three "empty" bytes of padding, but the padding is never zeroed before copying to userspace. Fix that up by zeroing the structure before setting individual member variables.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Linux | Linux Kernel | >= 2.6.19.1, < 5.10.253 |
Related Weaknesses (CWE)
References
- https://git.kernel.org/stable/c/0616314b3b34f24cbb91da8c6bd8bcdc4c8592f9Patch
- https://git.kernel.org/stable/c/0a30dceb0e1f0c480d2482e6d7cebf8aebb6eb72Patch
- https://git.kernel.org/stable/c/6c55714c931051cd7f4839c19ce0867179fd22fePatch
- https://git.kernel.org/stable/c/716c546e88cfe49d841658240e10cb57bc50a2ccPatch
- https://git.kernel.org/stable/c/d10119968d0e1f2b669604baf2a8b5fdb72fa6b4Patch
- https://git.kernel.org/stable/c/d27c02eec529f78055a46a5c9e6c62684382b2d8Patch
- https://git.kernel.org/stable/c/e0c8542c3d097ed4205ded51868195d5d6ddac62Patch
- https://git.kernel.org/stable/c/ff5ee507302303b15859753c3e0d67d38fd12c88Patch
FAQ
What is CVE-2026-31671?
CVE-2026-31671 is a vulnerability with a CVSS score of 5.5 (MEDIUM). In the Linux kernel, the following vulnerability has been resolved: xfrm_user: fix info leak in build_report() struct xfrm_user_report is a __u8 proto field followed by a struct xfrm_selector which ...
How severe is CVE-2026-31671?
CVE-2026-31671 has been rated MEDIUM with a CVSS base score of 5.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2026-31671?
Check the references section above for vendor advisories and patch information. Affected products include: Linux Linux Kernel.