CVE-2026-31570

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description An out-of-bounds heap access exists in the cgw csum crc8 rel() function. Although the function calculates bounds-safe indices using calc idx(), it incorrectly uses raw signed 8-bit fields for the loop and result write. This allows reading and writing to memory locations before the start of the canfd frame on the heap when negative indices are provided. This issue was confirmed using KASAN on version 7.0-rc2.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.