CVE-2026-31431: Linux Kernel Incorrect Resource Transfer Between Spheres Vulnerability
Published Apr 22, 2026
ยทUpdated
crypto: algif_aead - Revert to operating out-of-place
Affected Software
188 affected componentsFixes available
Linux Linux kernel
Linux Kernel
Microsoft azl3 kernel 6.6.134.1-2
Microsoft azl3 kernel-hwe 0:6.12-1
Linux Linux kernel>=4.14<5.10.254
Linux Linux kernel>=5.11<5.15.204
Linux Linux kernel>=5.16<6.1.170
Linux Linux kernel>=6.2<6.6.137
Linux Linux kernel>=6.7<6.12.85
Linux Linux kernel>=6.13<6.18.22
Linux Linux kernel>=6.19<6.19.12
Linux Linux kernel=7.0-rc1
Linux Linux kernel=7.0-rc2
Linux Linux kernel=7.0-rc3
Linux Linux kernel=7.0-rc4
Linux Linux kernel=7.0-rc5
Linux Linux kernel=7.0-rc6
redhat OpenShift Container Platform=4.0
redhat Enterprise Linux=8.0
redhat Enterprise Linux=9.0
redhat Enterprise Linux=10.0
redhat Enterprise Linux=10.1
Amazon Amazon Linux
Canonical Ubuntu Linux
Debian Debian Linux=11.0
Debian Debian Linux=12.0
Debian Debian Linux=13.0
openSUSE Leap=15.3
openSUSE Leap=15.4
openSUSE Leap=15.5
openSUSE Leap=15.6
SUSE CaaS Platform=4.0
SUSE Enterprise Storage=6.0
SUSE Enterprise Storage=7.0
SUSE Enterprise Storage=7.1
SUSE Manager Proxy=4.0
SUSE Manager Proxy=4.1
SUSE Manager Proxy=4.2
SUSE Manager Proxy=4.3
SUSE Manager Retail Branch Server=4.0
SUSE Manager Retail Branch Server=4.1
SUSE Manager Retail Branch Server=4.2
SUSE Manager Retail Branch Server=4.3
SUSE Manager Server=4.0
SUSE Manager Server=4.1
SUSE Manager Server=4.2
SUSE Manager Server=4.3
SUSE Openstack Cloud=9.0
SUSE OpenStack Cloud Crowbar=9.0
SUSE Basesystem Module Suse Linux Enterprise=15-sp1
SUSE Basesystem Module Suse Linux Enterprise=15-sp2
SUSE Basesystem Module Suse Linux Enterprise=15-sp3
SUSE Basesystem Module Suse Linux Enterprise=15-sp4
SUSE Basesystem Module Suse Linux Enterprise=15-sp5
SUSE Basesystem Module Suse Linux Enterprise=15-sp6
SUSE Basesystem Module Suse Linux Enterprise=15-sp7
SUSE Development Tools Module Suse Linux Enterprise=15-sp1
SUSE Development Tools Module Suse Linux Enterprise=15-sp2
SUSE Development Tools Module Suse Linux Enterprise=15-sp3
SUSE Development Tools Module Suse Linux Enterprise=15-sp4
SUSE Development Tools Module Suse Linux Enterprise=15-sp5
SUSE Development Tools Module Suse Linux Enterprise=15-sp6
SUSE Development Tools Module Suse Linux Enterprise=15-sp7
SUSE Legacy Module Suse Linux Enterprise=15-sp7
SUSE Linux Enterprise Desktop=11-sp4
SUSE Linux Enterprise Desktop=12-sp4
SUSE Linux Enterprise Desktop=15-sp1
SUSE Linux Enterprise Desktop=15-sp2
SUSE Linux Enterprise Desktop=15-sp3
SUSE Linux Enterprise Desktop=15-sp4
SUSE Linux Enterprise Desktop=15-sp5
SUSE Linux Enterprise Desktop=15-sp6
SUSE Linux Enterprise Desktop=15-sp7
SUSE Linux Enterprise High Availability Extension=15-sp4
SUSE Linux Enterprise High Availability Extension=15-sp6
SUSE Linux Enterprise High Availability Extension=15-sp7
SUSE Linux Enterprise High Availability Extension=16.0
SUSE Linux Enterprise High Performance Computing=15.0-sp1
SUSE Linux Enterprise High Performance Computing=15.0-sp1
SUSE Linux Enterprise High Performance Computing=15.0-sp1
SUSE Linux Enterprise High Performance Computing=15.0-sp2
SUSE Linux Enterprise High Performance Computing=15.0-sp2
SUSE Linux Enterprise High Performance Computing=15.0-sp2
SUSE Linux Enterprise High Performance Computing=15.0-sp3
SUSE Linux Enterprise High Performance Computing=15.0-sp3
SUSE Linux Enterprise High Performance Computing=15.0-sp3
SUSE Linux Enterprise High Performance Computing=15.0-sp4
SUSE Linux Enterprise High Performance Computing=15.0-sp4
SUSE Linux Enterprise High Performance Computing=15.0-sp4
SUSE Linux Enterprise High Performance Computing=15.0-sp5
SUSE Linux Enterprise High Performance Computing=15.0-sp5
SUSE Linux Enterprise High Performance Computing=15.0-sp5
SUSE Linux Enterprise High Performance Computing=15.0-sp6
SUSE Linux Enterprise High Performance Computing=15.0-sp7
SUSE Linux Enterprise Live Patching=12-sp5
SUSE Linux Enterprise Live Patching=15-sp4
SUSE Linux Enterprise Live Patching=15-sp5
SUSE Linux Enterprise Live Patching=15-sp6
SUSE Linux Enterprise Live Patching=15-sp7
SUSE Linux Enterprise Micro=5.0
SUSE Linux Enterprise Micro=5.1
SUSE Linux Enterprise Micro=5.2
SUSE Linux Enterprise Micro Rancher=5.2
SUSE Linux Enterprise Micro=5.3
SUSE Linux Enterprise Micro Rancher=5.3
SUSE Linux Enterprise Micro=5.4
SUSE Linux Enterprise Micro Rancher=5.4
SUSE Linux Enterprise Micro=5.5
SUSE Linux Enterprise Real Time=15.0-sp2
SUSE Linux Enterprise Real Time=15.0-sp3
SUSE Linux Enterprise Real Time=15.0-sp4
SUSE Linux Enterprise Real Time=15.0-sp5
SUSE Linux Enterprise Real Time=15.0-sp6
SUSE Linux Enterprise Real Time=15.0-sp7
SUSE Linux Enterprise Server=11-sp4
SUSE Linux Enterprise Server=11-sp4
SUSE Linux Enterprise Server=11-sp4
SUSE Linux Enterprise Server=12-sp4
SUSE Linux Enterprise Server Sap=12-sp4
SUSE Linux Enterprise Server=12-sp4
SUSE Linux Enterprise Server=12-sp4
SUSE Linux Enterprise Server=12-sp5
SUSE Linux Enterprise Server=12-sp5
SUSE Linux Enterprise Server=12-sp5
SUSE Linux Enterprise Server=15-sp1
SUSE Linux Enterprise Server Sap=15-sp1
SUSE Linux Enterprise Server=15-sp1
SUSE Linux Enterprise Server=15-sp1
SUSE Linux Enterprise Server=15-sp2
SUSE Linux Enterprise Server Sap=15-sp2
SUSE Linux Enterprise Server=15-sp2
SUSE Linux Enterprise Server=15-sp2
SUSE Linux Enterprise Server=15-sp3
SUSE Linux Enterprise Server Sap=15-sp3
SUSE Linux Enterprise Server=15-sp3
SUSE Linux Enterprise Server=15-sp3
SUSE Linux Enterprise Server=15-sp4
SUSE Linux Enterprise Server Sap=15-sp4
SUSE Linux Enterprise Server=15-sp4
SUSE Linux Enterprise Server=15-sp5
SUSE Linux Enterprise Server Sap=15-sp5
SUSE Linux Enterprise Server=15-sp5
SUSE Linux Enterprise Server=15-sp6
SUSE Linux Enterprise Server Sap=15-sp6
SUSE Linux Enterprise Server=15-sp6
SUSE Linux Enterprise Server=15-sp7
SUSE Linux Enterprise Server Sap=15-sp7
SUSE Linux Enterprise Server=16.0
SUSE Linux Enterprise Server Sap=16.0
SUSE Linux Enterprise Server=16.1
SUSE Linux Enterprise Server Sap=16.1
SUSE Linux Enterprise Workstation Extension=15-sp7
SUSE Linux Micro=6.0
SUSE Linux Micro=6.1
SUSE Linux Micro=6.2
SUSE Public Cloud Module Suse Linux Enterprise=15-sp6
SUSE Public Cloud Module Suse Linux Enterprise=15-sp7
SUSE Realtime Module Suse Linux Enterprise=15-sp3
SUSE Realtime Module Suse Linux Enterprise=15-sp4
SUSE Realtime Module Suse Linux Enterprise=15-sp5
SUSE Realtime Module Suse Linux Enterprise=15-sp6
SUSE Realtime Module Suse Linux Enterprise=15-sp7
NixOS NixOS<25.11
Arista Cloudvision Agni>=2024.4.0<=2025.2.2
Arista CloudVision Portal>=2024.2.0<=2026.1.0
Arista Velocloud Edge>=4.5.0<=6.4.1
Arista Velocloud Gateway
VMware Velocloud Orchestrator
Arista Netvisor Os<7.1.0
Arista Netvisor Os=7.1.0
Arista Netvisor Os=7.1.0-hotfix7
All of the following
Siemens Simatic S7-1500 Cpu 1518-4 Pn\/dp Mfp Firmware>=3.1.5
Siemens Simatic S7-1500 Cpu 1518-4 Pn\/dp Mfp
All of the following
Siemens Simatic S7-1500 Cpu 1518f-4 Pn\/dp Mfp Firmware>=3.1.5
Siemens Simatic S7-1500 Cpu 1518f-4 Pn\/dp Mfp
All of the following
Siemens Siplus S7-1500 Cpu 1518-4 Pn\/dp Mfp Firmware>=3.1.5
Siemens Siplus S7-1500 Cpu 1518-4 Pn\/dp Mfp
All of the following
Siemens Simatic S7-1500 Tm Mfp Firmware<1.1
Siemens Simatic S7-1500 Tm Mfp
Canonical Ubuntu Linux=14.04
Canonical Ubuntu Linux=16.04
Canonical Ubuntu Linux=18.04
Canonical Ubuntu Linux=20.04
Canonical Ubuntu Linux=22.04
Canonical Ubuntu Linux=24.04
Canonical Ubuntu Linux=25.10
debian/linux<=5.10.223-1
5.10.251-56.1.170-36.1.172-16.12.86-16.12.90-17.0.7-17.0.9-1
debian/linux-6.1
6.1.172-1~deb11u1
Remediation
Information
"Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.
Patch Available
Patch Available
Patch Available
Patch Available
Patch Available
Patch Available
Patch Available
Patch Available
Patch Available
Patch Available
Patch Available
Mitigation
Please see the following link for mitigation information:
https://ubuntu.com/blog/copy-fail-vulnerability-fixes-available
Event History
Apr 22, 2026
CVE Published
via MITREยท08:15 AM
Data Sourced
via MITREยท08:15 AM
DescriptionSeverity
Data Sourced
via Red Hatยท09:01 AM
DescriptionSeverityAffected Software
Data Sourced
via NVDยท09:16 AM
RemedyDescriptionSeverityWeaknessAffected Software
Apr 23, 2026
Data Sourced
via Microsoftยท08:05 AM
DescriptionSeverityWeaknessAffected Software
Updated
via Microsoftยท08:05 AM
DescriptionSeverity
Updated
via Microsoftยท08:05 AM
Affected Software
Apr 30, 2026
News Published
via The Registerยท12:01 AM
News Published
via The Registerยท12:04 AM
News Published
via BleepingComputerยท01:54 PM
News Published
via BleepingComputerยท01:56 PM
News Published
via Dark Readingยท08:41 PM
May 1, 2026
Known Exploited
via CISAยท12:00 AM
Data Sourced
via CISAยท12:00 AM
RemedyDescriptionAffected Software
May 4, 2026
News Published
via BleepingComputerยท11:28 AM
May 5, 2026
News Published
via ZDNetยท02:47 PM
News Published
via The Registerยท03:01 PM
May 6, 2026
News Published
via ZDNetยท03:07 PM
May 12, 2026
News Published
via Dark Readingยท09:06 PM
May 23, 2026
Data Sourced
via Ubuntuยท11:41 PM
RemedyDescriptionSeverityAffected Software
Data Sourced
via Debianยท11:42 PM
DescriptionAffected Software
Frequently Asked Questions
1
What is the severity of CVE-2026-31431?
The severity of CVE-2026-31431 is currently being assessed as it pertains to a change in operational procedure in the Linux kernel.
2
How do I fix CVE-2026-31431?
To fix CVE-2026-31431, ensure you are using a patched version of the Linux kernel that addresses this vulnerability.
3
What systems are affected by CVE-2026-31431?
CVE-2026-31431 affects systems running specific versions of the Linux kernel that utilize the algif_aead interface.
4
What are the potential impacts of CVE-2026-31431?
The potential impacts of CVE-2026-31431 include vulnerabilities related to the handling of cryptographic operations in the Linux kernel.
5
When was CVE-2026-31431 announced?
CVE-2026-31431 was announced following a reversion of a previous commit in the Linux kernel regarding cryptographic operations.