HIGH🚩 CISA KEV⚡ EXPLOIT✓ PATCH🇵🇱 Wersja polska

CVE-2026-31431

CVSS 7.8v3.1pub. 2026-04-22upd. 2026-07-01

In the Linux kernel, the following vulnerability has been resolved: crypto: algif_aead - Revert to operating out-of-place This mostly reverts commit 72548b093ee3 except for the copying of the associated data. There is no benefit in operating in-place in algif_aead since the source and destination come from different mappings. Get rid of all the complexity added for in-place operation and just copy the AD directly.

CVSS Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
  • Amazon Linux

    OS
    Amazon
    wszystkie wersje
  • Arista Cloudvision Agni

    APP
    Arista
    2024.4.0 – 2025.2.2
  • Arista Cloudvision Portal

    APP
    Arista
    2024.2.0 – 2026.1.0
  • Arista Netvisor Os

    OS
    Arista
    7.1.0< 7.1.0
  • Arista Velocloud Edge

    APP
    Arista
    4.5.0 – 6.4.1
  • Arista Velocloud Gateway

    APP
    Arista
    wszystkie wersje
  • Canonical Ubuntu

    OS
    Canonical
    wszystkie wersje
  • Debian

    OS
    Debian
    11.012.013.0
  • Linux Kernel

    OS
    Linux
    7.06.13 – 6.18.22 (bez)6.19 – 6.19.12 (bez)4.14 – 5.10.254 (bez)6.7 – 6.12.85 (bez)6.2 – 6.6.137 (bez)5.16 – 6.1.170 (bez)5.11 – 5.15.204 (bez)
  • Nixos

    OS
    Nixos
    < 25.11
  • Opensuse Leap

    OS
    Opensuse
    15.315.415.515.6
  • Red Hat Enterprise Linux

    OS
    Redhat
    10.08.09.0
  • Red Hat Enterprise Linux Aus

    OS
    Redhat
    8.48.6
  • Red Hat Enterprise Linux Eus

    OS
    Redhat
    10.08.49.49.6
  • Red Hat Enterprise Linux Tus

    OS
    Redhat
    8.68.8
  • Red Hat Enterprise Linux Update Services For Sap Solutions

    OS
    Redhat
    8.68.89.09.2
  • Red Hat OpenShift Container Platform

    APP
    Redhat
    4.04.12 – 4.12.89 (bez)4.21 – 4.21.14 (bez)4.20 – 4.20.21 (bez)4.16 – 4.16.61 (bez)4.15 – 4.15.64 (bez)4.14 – 4.14.65 (bez)4.13 – 4.13.66 (bez)4.19 – 4.19.30 (bez)4.18 – 4.18.40 (bez)4.17 – 4.17.53 (bez)
  • Siemens Simatic S7 1500 Cpu 1518 4 Pn\/dp Mfp

    HW
    Siemens
    wszystkie wersje
  • Siemens Simatic S7 1500 Cpu 1518 4 Pn\/dp Mfp Firmware

    OS
    Siemens
    ≥ 3.1.5
  • SUSE Basesystem Module

    OS
    Suse
    15
  • SUSE Caas Platform

    APP
    Suse
    4.0
  • SUSE Development Tools Module

    OS
    Suse
    15
  • SUSE Enterprise Storage

    APP
    Suse
    6.07.07.1
  • SUSE Legacy Module

    OS
    Suse
    15
  • SUSE Linux Enterprise Desktop

    OS
    Suse
    111215
  • SUSE Linux Enterprise High Availability Extension

    OS
    Suse
    1516.0
  • SUSE Linux Enterprise High Performance Computing

    OS
    Suse
    15.0
  • SUSE Linux Enterprise Live Patching

    OS
    Suse
    1215
  • SUSE Linux Enterprise Micro

    OS
    Suse
    5.05.15.25.35.45.5
  • SUSE Linux Enterprise Real Time

    OS
    Suse
    15.0

CISA KEV — detailsi

Vendori
Linux
Producti
Kernel
Added to KEVi
May 1, 2026
Remediation deadline (US Federal)i
May 15, 2026(overdue)
Required action (CISA)i

"Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.

CISA descriptioni

Linux Kernel contains an incorrect resource transfer between spheres vulnerability that could allow for privilege escalation.

🔴
IMMEDIATE ACTION
Actively exploited in the wild (CISA KEV). Patch immediately.
CISA DEADLINE: 15 maja 2026
CWE
References

Related vulnerabilities

CVE-2026-24061CRITICAL9.8⚠ KEVPL ✓ten sam produkt

GNU Inetutils telnetd: ominięcie uwierzytelnienia przez zmienną USER

CVE-2025-10585CRITICAL9.8⚠ KEVPL ✓ten sam produkt

Type confusion w V8 (Google Chrome) — zdalne uszkodzenie sterty

CVE-2025-32463CRITICAL9.3⚠ KEVPL ✓ten sam produkt

Sudo: eskalacja uprawnień do root poprzez opcję --chroot (CVE-2025-32463)

CVE-2025-49113CRITICAL9.9⚠ KEVPL ✓ten sam produkt

RCE przez deserializację PHP w Roundcube Webmail (parametr _from)

CVE-2025-34028CRITICAL9.3⚠ KEVPL ✓ten sam produkt

Commvault Command Center – nieuwierzytelniony RCE przez path traversal w ZIP