Threats Tagged 'cve-2026-31677'

This Red Hat security advisory addresses multiple vulnerabilities in the Linux kernel packages for Red Hat Enterprise Linux 10 and related variants. The issues include a denial of service vulnerability in authencesn due to too-short additional authenticated data (CVE-2026-23060), cryptographic subsystem fixes (CVE-2026-31431 and CVE-2026-31677), and a local privilege escalation vulnerability known as the "Dirty Frag" ESP XFRM variant (CVE-2026-43284). The advisory rates the update as Important and requires a system reboot after applying the update. No known exploits are reported in the wild at this time. The vendor provides an official patch and recommends updating to the fixed kernel packages to mitigate these vulnerabilities.

This Red Hat security advisory addresses multiple vulnerabilities in the Linux kernel packages used in Red Hat Enterprise Linux 9 and related products. The issues include a denial of service vulnerability in authencesn due to too-short AAD (CVE-2026-23060), cryptographic subsystem fixes (CVE-2026-31431 and CVE-2026-31677), and a local privilege escalation vulnerability known as "Dirty Frag" in the ESP XFRM variant (CVE-2026-43284). These vulnerabilities affect the core Linux kernel and could impact system stability and security. Red Hat has released an important security update that fixes these issues. Systems must be rebooted after applying the update for the fixes to take effect.