CVE-2026-31431

high KEV

Published 2026-05-04 · Modified 2026-05-05

CVSS v3

7.8

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CVSS v2

—

VIR risk

9.3

Description

Important: kernel-rt security update

CISA KEV

Vendor: Linux
Product: Kernel
Due date: 2026-05-15

Predictions

Exploit likelihood

99%

Patch ETA

—

Heuristic predictions, AS-IS, for prioritization only.

Mitigations

vendor Authored 2026-05-27

Vendor advisory: alma — https://errata.almalinux.org/8/ALSA-2026-13578.html

vendor Authored 2026-05-27

Vendor advisory: alma — https://access.redhat.com/errata/RHSA-2026:13578

vendor Authored 2026-05-27

Vendor advisory: alma — https://errata.almalinux.org/8/ALSA-2026-13577.html

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2453803

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2424886

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2301637

vendor Authored 2026-05-27

Vendor advisory: alma — https://access.redhat.com/errata/RHSA-2026:13577

vendor Authored 2026-05-27

Vendor advisory: alma — https://errata.almalinux.org/9/ALSA-2026-13565.html

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2454844

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2448745

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2439852

vendor Authored 2026-05-27

Vendor advisory: alma — https://errata.almalinux.org/9/ALSA-2026-19225.html

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2467771

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2461763

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2460538

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2436779

vendor Authored 2026-05-27

Vendor advisory: alma — https://errata.almalinux.org/9/ALSA-2026-A002.html

vendor Authored 2026-05-27

Vendor advisory: alma — https://errata.almalinux.org/8/ALSA-2026-A001.html

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/show_bug.cgi?id=2460538

vendor Authored 2026-05-27

Vendor advisory: cisa-kev — https://lore.kernel.org/linux-cve-announce/2026042214-CVE-2026-31431-3d65@gregkh/; https://xint.io/blog/copy-fail-linux-distributions#the-fix-6 ; https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/about/ ; https://nvd.nist.gov/vuln/detail/CVE-2026-31431

vendor Authored 2026-05-27

Vendor advisory: debian — https://security-tracker.debian.org/tracker/CVE-2026-31431

vendor Authored 2026-05-27

Vendor advisory: suse — https://www.suse.com/security/cve/CVE-2026-31431.html

vendor Authored 2026-05-27

Vendor advisory: 134c704f-9b21-4f2e-91b3-4a467353bcc0 — https://xint.io/blog/copy-fail-linux-distributions#the-fix-6

vendor Authored 2026-05-27

Vendor advisory: 134c704f-9b21-4f2e-91b3-4a467353bcc0 — https://lore.kernel.org/linux-cve-announce/2026042214-CVE-2026-31431-3d65@gregkh/

vendor Authored 2026-05-27

Vendor advisory: af854a3a-2127-422b-91ae-364da2661108 — http://www.openwall.com/lists/oss-security/2026/04/30/5

vendor Authored 2026-05-27

Vendor advisory: af854a3a-2127-422b-91ae-364da2661108 — http://www.openwall.com/lists/oss-security/2026/04/30/16

vendor Authored 2026-05-27

Vendor advisory: af854a3a-2127-422b-91ae-364da2661108 — http://www.openwall.com/lists/oss-security/2026/04/30/15

vendor Authored 2026-05-27

Vendor advisory: af854a3a-2127-422b-91ae-364da2661108 — http://www.openwall.com/lists/oss-security/2026/04/30/14

vendor Authored 2026-05-27

Vendor advisory: af854a3a-2127-422b-91ae-364da2661108 — http://www.openwall.com/lists/oss-security/2026/04/30/12

vendor Authored 2026-05-27

Vendor advisory: af854a3a-2127-422b-91ae-364da2661108 — http://www.openwall.com/lists/oss-security/2026/04/30/11

vendor Authored 2026-05-27

Vendor advisory: af854a3a-2127-422b-91ae-364da2661108 — http://www.openwall.com/lists/oss-security/2026/04/30/10

vendor Authored 2026-05-27

Vendor advisory: af854a3a-2127-422b-91ae-364da2661108 — http://www.openwall.com/lists/oss-security/2026/04/29/26

vendor Authored 2026-05-27

Vendor advisory: af854a3a-2127-422b-91ae-364da2661108 — http://www.openwall.com/lists/oss-security/2026/04/29/25

vendor Authored 2026-05-27

Vendor advisory: af854a3a-2127-422b-91ae-364da2661108 — http://www.openwall.com/lists/oss-security/2026/04/29/23

vendor Authored 2026-05-27

Vendor advisory: 416baaa9-dc9f-4396-8d5f-8c081fb06d67 — https://git.kernel.org/stable/c/fafe0fa2995a0f7073c1c358d7d3145bcc9aedd8

vendor Authored 2026-05-27

Vendor advisory: 416baaa9-dc9f-4396-8d5f-8c081fb06d67 — https://git.kernel.org/stable/c/ce42ee423e58dffa5ec03524054c9d8bfd4f6237

vendor Authored 2026-05-27

Vendor advisory: 416baaa9-dc9f-4396-8d5f-8c081fb06d67 — https://git.kernel.org/stable/c/a664bf3d603dc3bdcf9ae47cc21e0daec706d7a5

vendor Authored 2026-05-27

Vendor advisory: 416baaa9-dc9f-4396-8d5f-8c081fb06d67 — https://git.kernel.org/stable/c/961cfa271a918ad4ae452420e7c303149002875b

vendor Authored 2026-05-27

Vendor advisory: 416baaa9-dc9f-4396-8d5f-8c081fb06d67 — https://git.kernel.org/stable/c/8b88d99341f139e23bdeb1027a2a3ae10d341d82

vendor Authored 2026-05-27

Vendor advisory: 416baaa9-dc9f-4396-8d5f-8c081fb06d67 — https://git.kernel.org/stable/c/893d22e0135fa394db81df88697fba6032747667

vendor Authored 2026-05-27

Vendor advisory: 416baaa9-dc9f-4396-8d5f-8c081fb06d67 — https://git.kernel.org/stable/c/3115af9644c342b356f3f07a4dd1c8905cd9a6fc

vendor Authored 2026-05-27

Vendor advisory: 416baaa9-dc9f-4396-8d5f-8c081fb06d67 — https://git.kernel.org/stable/c/19d43105a97be0810edbda875f2cd03f30dc130c

vendor Authored 2026-05-27

Vendor advisory: redhat — https://access.redhat.com/errata/RHSA-2026:19225

vendor Authored 2026-05-27

Vendor advisory: redhat — https://access.redhat.com/errata/RHSA-2026:15978

vendor Authored 2026-05-27

Vendor advisory: redhat — https://access.redhat.com/errata/RHSA-2026:13565

Exploits

OS impact

OS	Version	Status	Fixed in
rhel	9	fixed
arch		fixed	`6.19.12-1`
sles		affected
debian	bookworm	fixed	`6.1.170-1`
debian	bullseye	fixed	`5.10.251-3`
debian	forky	fixed	`6.19.12-1`
debian	sid	fixed	`6.19.12-1`
debian	trixie	fixed	`6.12.85-1`
linux-kernel		affected	`5.10.254`
linux-kernel	7.0	affected
rhel	8.0	affected
rhel	9.0	affected
rhel	10.0	affected
rhel	10.1	affected
debian	11.0	affected
debian	12.0	affected
debian	13.0	affected
ubuntu	-	affected
ubuntu	14.04	affected
ubuntu	16.04	affected
ubuntu	18.04	affected
ubuntu	20.04	affected
ubuntu	22.04	affected
ubuntu	24.04	affected
ubuntu	25.10	affected
suse	15.3	affected
suse	15.4	affected
suse	15.5	affected
suse	15.6	affected
suse	11	affected
suse	12	affected
suse	15	affected
suse	16.0	affected
suse	16.1	affected

Application impact

Vendor	Product	Versions
redhat	openshift_container_platform	`4.0`
suse	caas_platform	`4.0`
suse	enterprise_storage	`6.0`
suse	enterprise_storage	`7.0`
suse	enterprise_storage	`7.1`
suse	manager_proxy	`4.0`
suse	manager_proxy	`4.1`
suse	manager_proxy	`4.2`
suse	manager_proxy	`4.3`
suse	manager_retail_branch_server	`4.0`
suse	manager_retail_branch_server	`4.1`
suse	manager_retail_branch_server	`4.2`
suse	manager_retail_branch_server	`4.3`
suse	manager_server	`4.0`
suse	manager_server	`4.1`
suse	manager_server	`4.2`
suse	manager_server	`4.3`
suse	openstack_cloud	`9.0`
suse	openstack_cloud_crowbar	`9.0`
arista	cloudvision_agni	`{"startIncluding":"2024.4.0","endIncluding":"2025.2.2"}`
arista	cloudvision_portal	`{"startIncluding":"2024.2.0","endIncluding":"2026.1.0"}`
arista	velocloud_edge	`{"startIncluding":"4.5.0","endIncluding":"6.4.1"}`
arista	velocloud_gateway	`-`
vmware	velocloud_orchestrator	`-`

References

CWEs

CWE-669

Verify integrity in audit chain (admin only). AS-IS.