CVE-2026-31430
Out-of-Bounds Access in Linux Kernel X.509 Extension Parsing
Publication date: 2026-04-20
Last updated on: 2026-04-20
Assigner: kernel.org
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| linux | linux_kernel | * |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-UNKNOWN |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability is an out-of-bounds access issue in the Linux kernel's X.509 certificate parsing code. Specifically, when parsing certificate extensions such as Basic Constraints or Key Usage that are empty, the code reads the first byte of the extension without first verifying the extension's length. This can lead to reading memory outside the intended bounds.
The flaw can be triggered by an unprivileged user who submits a specially crafted certificate to the kernel via the keyrings API.
How can this vulnerability impact me? :
The vulnerability allows an unprivileged user to cause an out-of-bounds memory access in the Linux kernel by submitting a specially crafted certificate. This could potentially lead to kernel crashes or other unpredictable behavior, which might be exploited for privilege escalation or denial of service.