CVE-2026-31636

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description An out-of-bounds read exists in the rxrpc component. The function rxgk verify authenticator() copies auth len bytes into a temporary buffer and passes the parser limit to rxgk do verify authenticator(). Because the pointer is a be32 *, the parser end pointer is inflated by a factor of four, allowing malformed RESPONSE authenticators to read past the allocated kmalloc() buffer.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.