CVE-2026-31431 (Copy Fail)

Warning

Media report

Exploit

EPSS 3.91%
Published 22.04.2026 08:15:10
Last modified 11.05.2026 13:27:27
Source 416baaa9-dc9f-4396-8d5f-8c081f
CVE watchlists
Login
Open
Login

crypto: algif_aead - Revert to operating out-of-place

In the Linux kernel, the following vulnerability has been resolved:

crypto: algif_aead - Revert to operating out-of-place

This mostly reverts commit 72548b093ee3 except for the copying of
the associated data.

There is no benefit in operating in-place in algif_aead since the
source and destination come from different mappings.  Get rid of
all the complexity added for in-place operation and just copy the
AD directly.

Affected products Warnungen 4 Metrics 2 CWE 1 References 94

NVD 158 VulnDex Vulnerability Enrichment 11

Data is provided by the National Vulnerability Database (NVD)

Linux ≫ Linux Kernel Version >= 4.14 < 5.10.254

Linux ≫ Linux Kernel Version >= 5.11 < 5.15.204

Linux ≫ Linux Kernel Version >= 5.16 < 6.1.170

Linux ≫ Linux Kernel Version >= 6.2 < 6.6.137

Linux ≫ Linux Kernel Version >= 6.7 < 6.12.85

Linux ≫ Linux Kernel Version >= 6.13 < 6.18.22

Linux ≫ Linux Kernel Version >= 6.19 < 6.19.12

Linux ≫ Linux Kernel Version7.0 Updaterc1

Linux ≫ Linux Kernel Version7.0 Updaterc2

Linux ≫ Linux Kernel Version7.0 Updaterc3

Linux ≫ Linux Kernel Version7.0 Updaterc4

Linux ≫ Linux Kernel Version7.0 Updaterc5

Linux ≫ Linux Kernel Version7.0 Updaterc6

Redhat ≫ Openshift Container Platform Version4.0

Redhat ≫ Enterprise Linux Version8.0

Redhat ≫ Enterprise Linux Version9.0

Redhat ≫ Enterprise Linux Version10.0

Redhat ≫ Enterprise Linux Version10.1

Amazon ≫ Amazon Linux Version-

Canonical ≫ Ubuntu Linux Version-

Debian ≫ Debian Linux Version11.0

Debian ≫ Debian Linux Version12.0

Debian ≫ Debian Linux Version13.0

Opensuse ≫ Leap Version15.3

Opensuse ≫ Leap Version15.4

Opensuse ≫ Leap Version15.5

Opensuse ≫ Leap Version15.6

Suse ≫ Caas Platform Version4.0

Suse ≫ Enterprise Storage Version6.0

Suse ≫ Enterprise Storage Version7.0

Suse ≫ Enterprise Storage Version7.1

Suse ≫ Manager Proxy Version4.0

Suse ≫ Manager Proxy Version4.1

Suse ≫ Manager Proxy Version4.2

Suse ≫ Manager Proxy Version4.3

Suse ≫ Manager Retail Branch Server Version4.0

Suse ≫ Manager Retail Branch Server Version4.1

Suse ≫ Manager Retail Branch Server Version4.2

Suse ≫ Manager Retail Branch Server Version4.3

Suse ≫ Manager Server Version4.0

Suse ≫ Manager Server Version4.1

Suse ≫ Manager Server Version4.2

Suse ≫ Manager Server Version4.3

Suse ≫ Openstack Cloud Version9.0

Suse ≫ Openstack Cloud Crowbar Version9.0

Suse ≫ Basesystem Module Version15 Updatesp1 SwPlatformsuse_linux_enterprise

Suse ≫ Basesystem Module Version15 Updatesp2 SwPlatformsuse_linux_enterprise

Suse ≫ Basesystem Module Version15 Updatesp3 SwPlatformsuse_linux_enterprise

Suse ≫ Basesystem Module Version15 Updatesp4 SwPlatformsuse_linux_enterprise

Suse ≫ Basesystem Module Version15 Updatesp5 SwPlatformsuse_linux_enterprise

Suse ≫ Basesystem Module Version15 Updatesp6 SwPlatformsuse_linux_enterprise

Suse ≫ Basesystem Module Version15 Updatesp7 SwPlatformsuse_linux_enterprise

Suse ≫ Development Tools Module Version15 Updatesp1 SwPlatformsuse_linux_enterprise

Suse ≫ Development Tools Module Version15 Updatesp2 SwPlatformsuse_linux_enterprise

Suse ≫ Development Tools Module Version15 Updatesp3 SwPlatformsuse_linux_enterprise

Suse ≫ Development Tools Module Version15 Updatesp4 SwPlatformsuse_linux_enterprise

Suse ≫ Development Tools Module Version15 Updatesp5 SwPlatformsuse_linux_enterprise

Suse ≫ Development Tools Module Version15 Updatesp6 SwPlatformsuse_linux_enterprise

Suse ≫ Development Tools Module Version15 Updatesp7 SwPlatformsuse_linux_enterprise

Suse ≫ Legacy Module Version15 Updatesp7 SwPlatformsuse_linux_enterprise

Suse ≫ Linux Enterprise Desktop Version11 Updatesp4

Suse ≫ Linux Enterprise Desktop Version12 Updatesp4

Suse ≫ Linux Enterprise Desktop Version15 Updatesp1

Suse ≫ Linux Enterprise Desktop Version15 Updatesp2

Suse ≫ Linux Enterprise Desktop Version15 Updatesp3

Suse ≫ Linux Enterprise Desktop Version15 Updatesp4

Suse ≫ Linux Enterprise Desktop Version15 Updatesp5

Suse ≫ Linux Enterprise Desktop Version15 Updatesp6

Suse ≫ Linux Enterprise Desktop Version15 Updatesp7

Suse ≫ Linux Enterprise High Availability Extension Version15 Updatesp4

Suse ≫ Linux Enterprise High Availability Extension Version15 Updatesp6

Suse ≫ Linux Enterprise High Availability Extension Version15 Updatesp7

Suse ≫ Linux Enterprise High Availability Extension Version16.0 Update-

Suse ≫ Linux Enterprise High Performance Computing Version15.0 Updatesp1 SwEdition-

Suse ≫ Linux Enterprise High Performance Computing Version15.0 Updatesp1 SwEditionespos

Suse ≫ Linux Enterprise High Performance Computing Version15.0 Updatesp1 SwEditionltss

Suse ≫ Linux Enterprise High Performance Computing Version15.0 Updatesp2 SwEdition-

Suse ≫ Linux Enterprise High Performance Computing Version15.0 Updatesp2 SwEditionespos

Suse ≫ Linux Enterprise High Performance Computing Version15.0 Updatesp2 SwEditionltss

Suse ≫ Linux Enterprise High Performance Computing Version15.0 Updatesp3 SwEdition-

Suse ≫ Linux Enterprise High Performance Computing Version15.0 Updatesp3 SwEditionespos

Suse ≫ Linux Enterprise High Performance Computing Version15.0 Updatesp3 SwEditionltss

Suse ≫ Linux Enterprise High Performance Computing Version15.0 Updatesp4 SwEdition-

Suse ≫ Linux Enterprise High Performance Computing Version15.0 Updatesp4 SwEditionespos

Suse ≫ Linux Enterprise High Performance Computing Version15.0 Updatesp4 SwEditionltss

Suse ≫ Linux Enterprise High Performance Computing Version15.0 Updatesp5 SwEdition-

Suse ≫ Linux Enterprise High Performance Computing Version15.0 Updatesp5 SwEditionespos

Suse ≫ Linux Enterprise High Performance Computing Version15.0 Updatesp5 SwEditionltss

Suse ≫ Linux Enterprise High Performance Computing Version15.0 Updatesp6 SwEdition-

Suse ≫ Linux Enterprise High Performance Computing Version15.0 Updatesp7 SwEdition-

Suse ≫ Linux Enterprise Live Patching Version12 Updatesp5

Suse ≫ Linux Enterprise Live Patching Version15 Updatesp4

Suse ≫ Linux Enterprise Live Patching Version15 Updatesp5

Suse ≫ Linux Enterprise Live Patching Version15 Updatesp6

Suse ≫ Linux Enterprise Live Patching Version15 Updatesp7

Suse ≫ Linux Enterprise Micro Version5.0 SwPlatform-

Suse ≫ Linux Enterprise Micro Version5.1 SwPlatform-

Suse ≫ Linux Enterprise Micro Version5.2 SwPlatform-

Suse ≫ Linux Enterprise Micro Version5.2 SwPlatformrancher

Suse ≫ Linux Enterprise Micro Version5.3 SwPlatform-

Suse ≫ Linux Enterprise Micro Version5.3 SwPlatformrancher

Suse ≫ Linux Enterprise Micro Version5.4 SwPlatform-

Suse ≫ Linux Enterprise Micro Version5.4 SwPlatformrancher

Suse ≫ Linux Enterprise Micro Version5.5 SwPlatform-

Suse ≫ Linux Enterprise Real Time Version15.0 Updatesp2

Suse ≫ Linux Enterprise Real Time Version15.0 Updatesp3

Suse ≫ Linux Enterprise Real Time Version15.0 Updatesp4

Suse ≫ Linux Enterprise Real Time Version15.0 Updatesp5

Suse ≫ Linux Enterprise Real Time Version15.0 Updatesp6

Suse ≫ Linux Enterprise Real Time Version15.0 Updatesp7

Suse ≫ Linux Enterprise Server Version11 Updatesp4 SwEdition- SwPlatform-

Suse ≫ Linux Enterprise Server Version11 Updatesp4 SwEditionltss SwPlatform-

Suse ≫ Linux Enterprise Server Version11 Updatesp4 SwEditionltss_extreme_core SwPlatform-

Suse ≫ Linux Enterprise Server Version12 Updatesp4 SwEdition- SwPlatform-

Suse ≫ Linux Enterprise Server Version12 Updatesp4 SwEdition- SwPlatformsap

Suse ≫ Linux Enterprise Server Version12 Updatesp4 SwEditionespos SwPlatform-

Suse ≫ Linux Enterprise Server Version12 Updatesp4 SwEditionltss SwPlatform-

Suse ≫ Linux Enterprise Server Version12 Updatesp5 SwEdition- SwPlatform-

Suse ≫ Linux Enterprise Server Version12 Updatesp5 SwEditionltss SwPlatform-

Suse ≫ Linux Enterprise Server Version12 Updatesp5 SwEditionltss_extended_security SwPlatform-

Suse ≫ Linux Enterprise Server Version15 Updatesp1 SwEdition- SwPlatform-

Suse ≫ Linux Enterprise Server Version15 Updatesp1 SwEdition- SwPlatformsap

Suse ≫ Linux Enterprise Server Version15 Updatesp1 SwEditionbusiness_critical_linux SwPlatform-

Suse ≫ Linux Enterprise Server Version15 Updatesp1 SwEditionltss SwPlatform-

Suse ≫ Linux Enterprise Server Version15 Updatesp2 SwEdition- SwPlatform-

Suse ≫ Linux Enterprise Server Version15 Updatesp2 SwEdition- SwPlatformsap

Suse ≫ Linux Enterprise Server Version15 Updatesp2 SwEditionbusiness_critical_linux SwPlatform-

Suse ≫ Linux Enterprise Server Version15 Updatesp2 SwEditionltss SwPlatform-

Suse ≫ Linux Enterprise Server Version15 Updatesp3 SwEdition- SwPlatform-

Suse ≫ Linux Enterprise Server Version15 Updatesp3 SwEdition- SwPlatformsap

Suse ≫ Linux Enterprise Server Version15 Updatesp3 SwEditionbusiness_critical_linux SwPlatform-

Suse ≫ Linux Enterprise Server Version15 Updatesp3 SwEditionltss SwPlatform-

Suse ≫ Linux Enterprise Server Version15 Updatesp4 SwEdition- SwPlatform-

Suse ≫ Linux Enterprise Server Version15 Updatesp4 SwEdition- SwPlatformsap

Suse ≫ Linux Enterprise Server Version15 Updatesp4 SwEditionltss SwPlatform-

Suse ≫ Linux Enterprise Server Version15 Updatesp5 SwEdition- SwPlatform-

Suse ≫ Linux Enterprise Server Version15 Updatesp5 SwEdition- SwPlatformsap

Suse ≫ Linux Enterprise Server Version15 Updatesp5 SwEditionltss SwPlatform-

Suse ≫ Linux Enterprise Server Version15 Updatesp6 SwEdition- SwPlatform-

Suse ≫ Linux Enterprise Server Version15 Updatesp6 SwEdition- SwPlatformsap

Suse ≫ Linux Enterprise Server Version15 Updatesp6 SwEditionltss SwPlatform-

Suse ≫ Linux Enterprise Server Version15 Updatesp7 SwEdition- SwPlatform-

Suse ≫ Linux Enterprise Server Version15 Updatesp7 SwEdition- SwPlatformsap

Suse ≫ Linux Enterprise Server Version16.0 Update- SwEdition- SwPlatform-

Suse ≫ Linux Enterprise Server Version16.0 Update- SwEdition- SwPlatformsap

Suse ≫ Linux Enterprise Server Version16.1 Update- SwEdition- SwPlatform-

Suse ≫ Linux Enterprise Server Version16.1 Update- SwEdition- SwPlatformsap

Suse ≫ Linux Enterprise Workstation Extension Version15 Updatesp7

Suse ≫ Linux Micro Version6.0

Suse ≫ Linux Micro Version6.1

Suse ≫ Linux Micro Version6.2

Suse ≫ Public Cloud Module Version15 Updatesp6 SwPlatformsuse_linux_enterprise

Suse ≫ Public Cloud Module Version15 Updatesp7 SwPlatformsuse_linux_enterprise

Suse ≫ Realtime Module Version15 Updatesp3 SwPlatformsuse_linux_enterprise

Suse ≫ Realtime Module Version15 Updatesp4 SwPlatformsuse_linux_enterprise

Suse ≫ Realtime Module Version15 Updatesp5 SwPlatformsuse_linux_enterprise

Suse ≫ Realtime Module Version15 Updatesp6 SwPlatformsuse_linux_enterprise

Suse ≫ Realtime Module Version15 Updatesp7 SwPlatformsuse_linux_enterprise

VulnDex Vulnerability Enrichment

This information is available to logged-in users.

01.05.2026: CISA Known Exploited Vulnerabilities (KEV) Catalog

Linux Kernel Incorrect Resource Transfer Between Spheres Vulnerability

Vulnerability

Linux Kernel contains an incorrect resource transfer between spheres vulnerability that could allow for privilege escalation.

Description

"Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.

Required actions

EPSS Metrics
Type	Source	Score	percentile
EPSS	FIRST.org	3.91%	0.884

CVSS Metrics
Source	Base Score	Exploit Score	Impact Score	Vector string
416baaa9-dc9f-4396-8d5f-8c081fb06d67	7.8	1.8	5.9	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CWE-669 Incorrect Resource Transfer Between Spheres

The product does not properly transfer a resource/behavior to another sphere, or improperly imports a resource/behavior from another sphere, in a manner that provides unintended control over that resource.

https://thehackernews.com/2026/05/linux-kernel-dirty-frag-lpe-exploit.html

Media Report

https://thehackernews.com/2026/05/weekly-recap-ai-powered-phishing.html

Media Report

https://www.bleepingcomputer.com/news/security/cisa-says-copy-fail-flaw-now-exploited-to-root-linux-systems/

Media Report

https://www.heise.de/news/Linux-Luecke-Copy-Fail-wird-bereits-angegriffen-11279850.html

Media Report

https://thehackernews.com/2026/05/cisa-adds-actively-exploited-linux-root.html

Media Report

https://www.bleepingcomputer.com/news/security/new-linux-copy-fail-flaw-gives-hackers-root-on-major-distros/

Media Report