CVE-2026-31422

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A NULL pointer dereference occurs in the flow change() function when a flow filter without a fully qualified baseclass is created on a shared block. This happens because flow change() calls tcf block q() and attempts to dereference q->handle to derive a default baseclass, but shared blocks leave block->q as NULL.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.