CVE-2026-31412

Name of the Vulnerable Software and Affected Versions Linux Kernel (affected versions not specified)

Description The Linux kernel contains a flaw in the f mass storage gadget driver. The check command size in blocks() function does not validate for integer overflows when calculating data size in bytes by left-shifting common->data size from cmnd by the block size (common->curlun->blkbits). A malicious USB host sending a SCSI READ or WRITE command with a large data request (common->data size from cmnd) can cause a wrap-around during the left shift operation, resulting in a truncated data size. This can bypass boundary checks and potentially lead to memory corruption or out-of-bounds accesses.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.