# CVE-2026-31431

> In the Linux kernel, the following vulnerability has been resolved: crypto: algif_aead - Revert to operating out-of-place. This mostly reverts commit 72548b093ee3 except for the copying of the associated data. There is no benefit in operating in-place in algif_aead since the source and destination come from different mappings. Get rid of all the complexity added for in-place operation and just copy the AD directly.

- **CVSS:** 7.8 (HIGH)
- **EPSS:** 4.0%
- **CISA KEV:** yes
- **CWE:** CWE-669

Canonical: https://intel.threadlinqs.com/cve/CVE-2026-31431
Full threat coverage + IOCs via the Threadlinqs MCP server (Purple tier): https://intel.threadlinqs.com/mcp