CVE-2026-31472

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description An issue exists in the xfrm IPTFS component where the inner IPv4 header length in IPTFS payloads is not properly validated within the input process payload() function. A specially crafted ESP packet containing an inner IPv4 header with a tot len of 0 can trigger an infinite loop. This occurs because the data offset fails to advance, causing the system to spin indefinitely in the softirq context.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.