CVE-2026-31430

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description An out-of-bounds access occurs when parsing X.509 certificates containing empty Basic Constraints or Key Usage extensions. This happens because the first byte of the extension is read before the system verifies its length. An unprivileged user can trigger this issue by submitting a specially crafted certificate to the kernel via the 'keyrings(7)' API.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.