CVE-2026-31637

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description The rxkad decrypt ticket() function decrypts the RXKAD response ticket but parses the buffer as plaintext without verifying if the crypto skcipher decrypt() operation was successful. A malformed RESPONSE using a non-block-aligned ticket length can cause the decryption to fail, allowing attacker-controlled bytes to be processed by the ticket parser.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.