CVE-2026-31676

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description An issue exists in the RxRPC component where RESPONSE packets were not strictly limited to the service challenge phase. This allowed duplicate or late RESPONSE packets to re-run the setup path. The fix ensures that RESPONSE packets are only processed while the service connection is in the RXRPC CONN SERVICE CHALLENGING state, verified under state lock before security initialization and response verification.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.