CVE-2026-31431

⚠️ high

Summary

In the Linux kernel, the following vulnerability has been resolved: crypto: algif_aead - Revert to operating out-of-place This mostly reverts commit 72548b093ee3 except for the copying of the associated data. There is no benefit in operating in-place in algif_aead since the source and destination come from different mappings. Get rid of all the complexity added for in-place operation and just copy the AD directly.

CVSS Score

7.8

High

EPSS Score

2.4

Exploit Probability

Published Date

2026-04-22

First Seen: 2026-04-28

📊 Relative Risk Intelligence

This CVE is Moderate Risk - more severe than 69.7% of all 322,079 vulnerabilities in our database.

#97,519

Above average severity

Severity Percentile

🎯 CISA SSVC Assessment Updated: Apr 29, 2026

🔍 Exploitation Status

Active

Exploits detected in the wild

⚙️ Automatable

Requires human interaction

💥 Technical Impact

Total

Complete system compromise possible

SSVC data provided by CISA

Last Modified 2026-05-21

Source NVD 🔗

CVSS Vector 3.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CWE IDs (Weakness Types)

CWE-669

📦 Affected Products 75

Vendor	Product	Status	Affected Versions
debian	debian_linux	Affected	v11.0
debian	debian_linux	Affected	v12.0
debian	debian_linux	Affected	v13.0
linux	linux_kernel	Affected	> 4.14 < 5.10.254
linux	linux_kernel	Affected	> 5.11 < 5.15.204
linux	linux_kernel	Affected	> 5.16 < 6.1.170
linux	linux_kernel	Affected	> 6.7 < 6.12.85
linux	linux_kernel	Affected	> 6.13 < 6.18.22
linux	linux_kernel	Affected	> 6.19 < 6.19.12
linux	linux_kernel	Affected	> 6.2 < 6.6.137
linux	linux_kernel	Affected	v7.0
novell	suse_linux	Affected	v-
redhat	enterprise_linux	Affected	v10.0
redhat	enterprise_linux	Affected	v10.1
redhat	enterprise_linux	Affected	v8.0
redhat	enterprise_linux	Affected	v9.0
suse	linux_enterprise_desktop	Affected	v11
suse	linux_enterprise_desktop	Affected	v12
suse	linux_enterprise_desktop	Affected	v15
suse	linux_enterprise_server	Affected	v11
suse	linux_enterprise_server	Affected	v12
suse	linux_enterprise_server	Affected	v15
suse	linux_enterprise_server	Affected	v16.0
suse	linux_enterprise_server	Affected	v16.1
canonical	ubuntu_linux	Affected	v-
canonical	ubuntu_linux	Affected	v14.04
canonical	ubuntu_linux	Affected	v16.04
canonical	ubuntu_linux	Affected	v18.04
canonical	ubuntu_linux	Affected	v20.04
canonical	ubuntu_linux	Affected	v22.04
canonical	ubuntu_linux	Affected	v24.04
canonical	ubuntu_linux	Affected	v25.10
suse	linux_enterprise_workstation_extension	Affected	v15
suse	openstack_cloud	Affected	v9.0
suse	manager_proxy	Affected	v4.0
suse	manager_proxy	Affected	v4.1
suse	manager_proxy	Affected	v4.2
suse	manager_proxy	Affected	v4.3
arista	cloudvision_portal	Affected	> 2024.2.0 < 2026.1.0
opensuse	leap	Affected	v15.3
opensuse	leap	Affected	v15.4
opensuse	leap	Affected	v15.5
opensuse	leap	Affected	v15.6
redhat	openshift_container_platform	Affected	v4.0
suse	caas_platform	Affected	v4.0
suse	linux_enterprise_high_performance_computing	Affected	v15.0
suse	openstack_cloud_crowbar	Affected	v9.0
nixos	nixos	Affected	< 25.11
suse	linux_enterprise_high_availability_extension	Affected	v15
suse	linux_enterprise_high_availability_extension	Affected	v16.0
vmware	velocloud_orchestrator	Affected	v-
suse	enterprise_storage	Affected	v6.0
suse	enterprise_storage	Affected	v7.0
suse	enterprise_storage	Affected	v7.1
suse	linux_enterprise_real_time	Affected	v15.0
suse	manager_server	Affected	v4.0
suse	manager_server	Affected	v4.1
suse	manager_server	Affected	v4.2
suse	manager_server	Affected	v4.3
suse	linux_enterprise_live_patching	Affected	v12
suse	linux_enterprise_live_patching	Affected	v15
suse	manager_retail_branch_server	Affected	v4.0
suse	manager_retail_branch_server	Affected	v4.1
suse	manager_retail_branch_server	Affected	v4.2
suse	manager_retail_branch_server	Affected	v4.3
suse	linux_enterprise_micro	Affected	v5.0
suse	linux_enterprise_micro	Affected	v5.1
suse	linux_enterprise_micro	Affected	v5.2
suse	linux_enterprise_micro	Affected	v5.3
suse	linux_enterprise_micro	Affected	v5.4
suse	linux_enterprise_micro	Affected	v5.5
siemens	simatic_s7-1500_cpu_1518-4_pn\/dp_mfp_firmware	Affected	> 3.1.5
siemens	simatic_s7-1500_cpu_1518f-4_pn\/dp_mfp_firmware	Affected	> 3.1.5
siemens	siplus_s7-1500_cpu_1518-4_pn\/dp_mfp_firmware	Affected	> 3.1.5
amazon	amazon_linux	Affected	v-

🔗 References 86

https://git.kernel.org/stable/c/19d43105a97be0810edb...

Patch

https://git.kernel.org/stable/c/3115af9644c342b356f3...

Patch

https://git.kernel.org/stable/c/893d22e0135fa394db81...

Patch

https://git.kernel.org/stable/c/8b88d99341f139e23bde...

Patch

https://git.kernel.org/stable/c/961cfa271a918ad4ae45...

Patch

https://git.kernel.org/stable/c/a664bf3d603dc3bdcf9a...

Patch

https://git.kernel.org/stable/c/ce42ee423e58dffa5ec0...

Patch

https://git.kernel.org/stable/c/fafe0fa2995a0f7073c1...

Patch

http://www.openwall.com/lists/oss-security/2026/04/2...

Exploit Mailing List Patch

http://www.openwall.com/lists/oss-security/2026/04/2...

Mailing List Patch

http://www.openwall.com/lists/oss-security/2026/04/2...

Exploit Mailing List Patch

http://www.openwall.com/lists/oss-security/2026/04/3...

Mailing List Patch

http://www.openwall.com/lists/oss-security/2026/04/3...

Mailing List Patch

http://www.openwall.com/lists/oss-security/2026/04/3...

Mailing List Patch

http://www.openwall.com/lists/oss-security/2026/04/3...

Mailing List Patch

http://www.openwall.com/lists/oss-security/2026/04/3...

Mailing List Patch

http://www.openwall.com/lists/oss-security/2026/04/3...

Mailing List Patch

http://www.openwall.com/lists/oss-security/2026/04/3...

Mailing List

http://www.openwall.com/lists/oss-security/2026/04/3...

Exploit Mailing List

http://www.openwall.com/lists/oss-security/2026/04/30/2

Mailing List

http://www.openwall.com/lists/oss-security/2026/04/3...

Mailing List

http://www.openwall.com/lists/oss-security/2026/04/30/5

Exploit Mailing List Patch

http://www.openwall.com/lists/oss-security/2026/04/30/6

Mailing List

http://www.openwall.com/lists/oss-security/2026/05/0...

Mailing List

http://www.openwall.com/lists/oss-security/2026/05/0...

Mailing List

http://www.openwall.com/lists/oss-security/2026/05/0...

Mailing List

http://www.openwall.com/lists/oss-security/2026/05/0...

Mailing List

http://www.openwall.com/lists/oss-security/2026/05/0...

Mailing List

http://www.openwall.com/lists/oss-security/2026/05/0...

Mailing List

http://www.openwall.com/lists/oss-security/2026/05/01/2

Mailing List

http://www.openwall.com/lists/oss-security/2026/05/0...

Mailing List

http://www.openwall.com/lists/oss-security/2026/05/0...

Mailing List

http://www.openwall.com/lists/oss-security/2026/05/0...

Mailing List

http://www.openwall.com/lists/oss-security/2026/05/01/3

Mailing List

http://www.openwall.com/lists/oss-security/2026/05/0...

Mailing List

http://www.openwall.com/lists/oss-security/2026/05/0...

Mailing List

http://www.openwall.com/lists/oss-security/2026/05/0...

Mailing List

http://www.openwall.com/lists/oss-security/2026/05/0...

Mailing List

http://www.openwall.com/lists/oss-security/2026/05/0...

Mailing List

http://www.openwall.com/lists/oss-security/2026/05/0...

Mailing List

http://www.openwall.com/lists/oss-security/2026/05/0...

Mailing List

http://www.openwall.com/lists/oss-security/2026/05/0...

Mailing List

http://www.openwall.com/lists/oss-security/2026/05/0...

Mailing List

http://www.openwall.com/lists/oss-security/2026/05/0...

Mailing List

http://www.openwall.com/lists/oss-security/2026/05/0...

Mailing List

http://www.openwall.com/lists/oss-security/2026/05/02/4

Mailing List

http://www.openwall.com/lists/oss-security/2026/05/02/5

Mailing List

http://www.openwall.com/lists/oss-security/2026/05/02/6

Mailing List

http://www.openwall.com/lists/oss-security/2026/05/02/7

Mailing List

http://www.openwall.com/lists/oss-security/2026/05/02/8

Mailing List

http://www.openwall.com/lists/oss-security/2026/05/0...

Mailing List

http://www.openwall.com/lists/oss-security/2026/05/0...

Mailing List

http://www.openwall.com/lists/oss-security/2026/05/0...

Mailing List

http://www.openwall.com/lists/oss-security/2026/05/03/3

Mailing List

http://www.openwall.com/lists/oss-security/2026/05/03/4

Mailing List

http://www.openwall.com/lists/oss-security/2026/05/03/5

Mailing List

http://www.openwall.com/lists/oss-security/2026/05/03/6

Mailing List

http://www.openwall.com/lists/oss-security/2026/05/04/1

Mailing List

http://www.openwall.com/lists/oss-security/2026/05/0...

Mailing List

http://www.openwall.com/lists/oss-security/2026/05/0...

Mailing List

http://www.openwall.com/lists/oss-security/2026/05/0...

Mailing List

http://www.openwall.com/lists/oss-security/2026/05/0...

Mailing List

http://www.openwall.com/lists/oss-security/2026/05/0...

Mailing List

http://www.openwall.com/lists/oss-security/2026/05/04/2

Mailing List

http://www.openwall.com/lists/oss-security/2026/05/0...

Mailing List

http://www.openwall.com/lists/oss-security/2026/05/0...

Mailing List

http://www.openwall.com/lists/oss-security/2026/05/0...

Mailing List

http://www.openwall.com/lists/oss-security/2026/05/0...

Mailing List

http://www.openwall.com/lists/oss-security/2026/05/0...

Mailing List

http://www.openwall.com/lists/oss-security/2026/05/04/8

Mailing List

http://www.openwall.com/lists/oss-security/2026/05/04/9

Mailing List

http://www.openwall.com/lists/oss-security/2026/05/06/5

Mailing List

http://www.openwall.com/lists/oss-security/2026/05/0...

Mailing List

http://www.openwall.com/lists/oss-security/2026/05/07/2

Mailing List

http://www.openwall.com/lists/oss-security/2026/05/0...

Mailing List

http://www.openwall.com/lists/oss-security/2026/05/18/3

Mailing List

https://copy.fail

Exploit

https://websec.net/blog/cve-2026-31431-linux-algifae...

Exploit Third Party Advisory

https://www.kb.cert.org/vuls/id/260001

Third Party Advisory

https://access.redhat.com/security/cve/cve-2026-3143...

Third Party Advisory

https://cert-portal.siemens.com/productcert/html/ssa...

Third Party Advisory

https://cert-portal.siemens.com/productcert/html/ssa...

Third Party Advisory

https://github.com/theori-io/copy-fail-CVE-2026-31431

Exploit

https://lore.kernel.org/linux-cve-announce/202604221...

Vendor Advisory

https://www.cisa.gov/known-exploited-vulnerabilities...

US Government Resource

https://xint.io/blog/copy-fail-linux-distributions#t...

Exploit Patch Third Party Advisory

🔗 Related CVEs 6

CVE ID	Severity	CVSS	Summary	Published
CVE-2026-43500	⚠️ high	7.8	In the Linux kernel, the following vulnerability has been resolved: rxrpc: Also unshare DATA/RESPONSE packets when page...	2026-05-11
CVE-2026-43284	⚠️ high	8.8	In the Linux kernel, the following vulnerability has been resolved: xfrm: esp: avoid in-place decrypt on shared skb fra...	2026-05-08
CVE-2025-71296	🔶 medium	5.5	In the Linux kernel, the following vulnerability has been resolved: drm/tests: shmem: Hold reservation lock around purg...	2026-05-08
CVE-2025-71297	🔶 medium	5.5	In the Linux kernel, the following vulnerability has been resolved: wifi: rtw88: 8822b: Avoid WARNING in rtw8822b_confi...	2026-05-08
CVE-2025-71298	🔶 medium	5.5	In the Linux kernel, the following vulnerability has been resolved: drm/tests: shmem: Hold reservation lock around madv...	2026-05-08
CVE-2025-71299	🔶 medium	5.5	In the Linux kernel, the following vulnerability has been resolved: spi: cadence-quadspi: Parse DT for flashes with the...	2026-05-08

These CVEs affect the same products