CVE-2026-31406

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description The Linux kernel contains a flaw within the xfrm subsystem related to the handling of delayed work cancellation in xfrm nat keepalive net fini(). Specifically, the use of cancel delayed work sync() could lead to a race condition where a delayed work item (nat keepalive work) is rescheduled after the associated network structure (net) has been freed. This can result in the delayed work function being executed on freed memory, potentially leading to a system crash or other unpredictable behavior. The issue arises from the interaction between xfrm nat keepalive net fini(), xfrm state fini(), xfrm state delete(), and xfrm nat keepalive state updated(). The problem was addressed by replacing cancel delayed work sync() with disable delayed work sync().

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.