CVE-2026-31421

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A NULL pointer dereference occurs in the fw classify() function when an empty cls fw filter is attached to a shared block and a packet with a nonzero major skb mark is classified. This happens because the old-method path in fw classify() calls tcf block q() and attempts to dereference q->handle, but shared blocks leave block->q as NULL.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.