HIGHCVE-2026-31417Published Modified CNA Linux
CVE-2026-31417: net/x25: Fix overflow when accumulating packets
In the Linux kernel, the following vulnerability has been resolved: net/x25: Fix overflow when accumulating packets Add a check to ensure that `x25_sock.fraglen` does not overflow. The `fraglen` also needs to be resetted when purging `fragment_queue` in `x25_clear_queues()`.
Metrics
- CVSS v3.1
- 7.5
- Severity
- HIGH
- Fixed in
- 0
- Affected Products
- 2
Fix available
01734bd85c5e0a7a801295b729efb56b009cb8fc34e2d1bcef78d21247fe8fef13bc7ed95885df2b55.10.2535.15.2036.1.1686.6.1346.12.816.18.226.19.126e568835ea54a3e1d08e310e34f95d434e7394777.0798d613afb64b01a203f448fb0f43c37c6afe79d8c92969c197b91c134be27dc3afb64ab468853a996fc16370b0bceb289c7e0479bd0540b81e257aaa1822cb524e89b4cd2cf0b82e484a2335496a6d9f953f11ccf4afe6feb635c08145f4240d9a6b544
Affected packages
- Linux / Linux< 96fc16370b0bceb289c7e0479bd0540b81e257aa (from 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2) · < 798d613afb64b01a203f448fb0f43c37c6afe79d (from 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2) · < 6e568835ea54a3e1d08e310e34f95d434e739477 (from 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2) · < 1734bd85c5e0a7a801295b729efb56b009cb8fc3 (from 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2) · < 4e2d1bcef78d21247fe8fef13bc7ed95885df2b5 (from 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2) · < 8c92969c197b91c134be27dc3afb64ab468853a9 (from 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2)
- Linux / Linux2.6.12Fixed in 0, 5.10.253, 5.15.203, 6.1.168, 6.6.134, 6.12.81, 6.18.22, 6.19.12, 7.0
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H