Medium severity5.5NVD Advisory· Published Apr 22, 2026· Updated Apr 28, 2026
CVE-2026-31518
CVE-2026-31518
Description
In the Linux kernel, the following vulnerability has been resolved:
esp: fix skb leak with espintcp and async crypto
When the TX queue for espintcp is full, esp_output_tail_tcp will return an error and not free the skb, because with synchronous crypto, the common xfrm output code will drop the packet for us.
With async crypto (esp_output_done), we need to drop the skb when esp_output_tail_tcp returns an error.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
74cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*+ 7 more
- cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*range: >=5.6,<5.10.253
- cpe:2.3:o:linux:linux_kernel:7.0:rc1:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:7.0:rc2:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:7.0:rc3:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:7.0:rc4:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:7.0:rc5:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:7.0:rc6:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:7.0:rc7:*:*:*:*:*:*
- osv-coords66 versionspkg:rpm/opensuse/dtb-aarch64&distro=openSUSE%20Leap%2016.0pkg:rpm/opensuse/kernel-64kb&distro=openSUSE%20Leap%2016.0pkg:rpm/opensuse/kernel-azure&distro=openSUSE%20Leap%2016.0pkg:rpm/opensuse/kernel-default-base&distro=openSUSE%20Leap%2016.0pkg:rpm/opensuse/kernel-default&distro=openSUSE%20Leap%2016.0pkg:rpm/opensuse/kernel-docs&distro=openSUSE%20Leap%2016.0pkg:rpm/opensuse/kernel-kvmsmall&distro=openSUSE%20Leap%2016.0pkg:rpm/opensuse/kernel-obs-build&distro=openSUSE%20Leap%2016.0pkg:rpm/opensuse/kernel-obs-qa&distro=openSUSE%20Leap%2016.0pkg:rpm/opensuse/kernel-rt&distro=openSUSE%20Leap%2016.0pkg:rpm/opensuse/kernel-source&distro=openSUSE%20Leap%2016.0pkg:rpm/opensuse/kernel-syms&distro=openSUSE%20Leap%2016.0pkg:rpm/opensuse/kernel-zfcpdump&distro=openSUSE%20Leap%2016.0pkg:rpm/suse/kernel-64kb&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP7pkg:rpm/suse/kernel-64kb&distro=SUSE%20Linux%20Enterprise%20Server%2016.0pkg:rpm/suse/kernel-64kb&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20applications%2016.0pkg:rpm/suse/kernel-64kb&distro=SUSE%20Linux%20Micro%206.2pkg:rpm/suse/kernel-azure&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Public%20Cloud%2015%20SP7pkg:rpm/suse/kernel-azure&distro=SUSE%20Linux%20Enterprise%20Server%2016.0pkg:rpm/suse/kernel-azure&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20applications%2016.0pkg:rpm/suse/kernel-default-base&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP7pkg:rpm/suse/kernel-default-base&distro=SUSE%20Linux%20Enterprise%20Server%2016.0pkg:rpm/suse/kernel-default-base&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20applications%2016.0pkg:rpm/suse/kernel-default-base&distro=SUSE%20Linux%20Micro%206.0pkg:rpm/suse/kernel-default-base&distro=SUSE%20Linux%20Micro%206.1pkg:rpm/suse/kernel-default-base&distro=SUSE%20Linux%20Micro%206.2pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20High%20Availability%20Extension%2015%20SP7pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20High%20Availability%20Extension%2016.0pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Live%20Patching%2015%20SP7pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP7pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Legacy%2015%20SP7pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Server%2016.0pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20applications%2016.0pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2015%20SP7pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Micro%206.0pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Micro%206.1pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Micro%206.2pkg:rpm/suse/kernel-docs&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Development%20Tools%2015%20SP7pkg:rpm/suse/kernel-docs&distro=SUSE%20Linux%20Enterprise%20Server%2016.0pkg:rpm/suse/kernel-docs&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20applications%2016.0pkg:rpm/suse/kernel-kvmsmall&distro=SUSE%20Linux%20Enterprise%20Server%2016.0pkg:rpm/suse/kernel-kvmsmall&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20applications%2016.0pkg:rpm/suse/kernel-kvmsmall&distro=SUSE%20Linux%20Micro%206.0pkg:rpm/suse/kernel-kvmsmall&distro=SUSE%20Linux%20Micro%206.1pkg:rpm/suse/kernel-livepatch-SLE15-SP7-RT_Update_16&distro=SUSE%20Linux%20Enterprise%20Live%20Patching%2015%20SP7pkg:rpm/suse/kernel-livepatch-SLE15-SP7_Update_16&distro=SUSE%20Linux%20Enterprise%20Live%20Patching%2015%20SP7pkg:rpm/suse/kernel-obs-build&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Development%20Tools%2015%20SP7pkg:rpm/suse/kernel-obs-qa&distro=SUSE%20Linux%20Enterprise%20Server%2016.0pkg:rpm/suse/kernel-obs-qa&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20applications%2016.0pkg:rpm/suse/kernel-rt&distro=SUSE%20Linux%20Micro%206.2pkg:rpm/suse/kernel-rt&distro=SUSE%20Real%20Time%20Module%2015%20SP7pkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP7pkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Development%20Tools%2015%20SP7pkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Enterprise%20Server%2016.0pkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20applications%2016.0pkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Micro%206.0pkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Micro%206.1pkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Micro%206.2pkg:rpm/suse/kernel-source-rt&distro=SUSE%20Real%20Time%20Module%2015%20SP7pkg:rpm/suse/kernel-syms&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Development%20Tools%2015%20SP7pkg:rpm/suse/kernel-syms&distro=SUSE%20Linux%20Enterprise%20Server%2016.0pkg:rpm/suse/kernel-syms&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20applications%2016.0pkg:rpm/suse/kernel-syms-rt&distro=SUSE%20Real%20Time%20Module%2015%20SP7pkg:rpm/suse/kernel-zfcpdump&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP7pkg:rpm/suse/kernel-zfcpdump&distro=SUSE%20Linux%20Enterprise%20Server%2016.0pkg:rpm/suse/kernel-zfcpdump&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20applications%2016.0
< 6.12.0-160000.35.1+ 65 more
- (no CPE)range: < 6.12.0-160000.35.1
- (no CPE)range: < 6.12.0-160000.35.1
- (no CPE)range: < 6.12.0-160000.35.1
- (no CPE)range: < 6.12.0-160000.35.1.160000.2.16
- (no CPE)range: < 6.12.0-160000.35.1
- (no CPE)range: < 6.12.0-160000.35.1
- (no CPE)range: < 6.12.0-160000.35.1
- (no CPE)range: < 6.12.0-160000.35.1
- (no CPE)range: < 6.12.0-160000.35.1
- (no CPE)range: < 6.12.0-160000.35.1
- (no CPE)range: < 6.12.0-160000.35.1
- (no CPE)range: < 6.12.0-160000.35.1
- (no CPE)range: < 6.12.0-160000.35.1
- (no CPE)range: < 6.4.0-150700.53.60.1
- (no CPE)range: < 6.12.0-160000.35.1
- (no CPE)range: < 6.12.0-160000.35.1
- (no CPE)range: < 6.12.0-160000.35.1
- (no CPE)range: < 6.4.0-150700.53.60.1
- (no CPE)range: < 6.12.0-160000.35.1
- (no CPE)range: < 6.12.0-160000.35.1
- (no CPE)range: < 6.4.0-150700.53.60.1.150700.17.35.4
- (no CPE)range: < 6.12.0-160000.35.1.160000.2.16
- (no CPE)range: < 6.12.0-160000.35.1.160000.2.16
- (no CPE)range: < 6.4.0-47.1.21.24
- (no CPE)range: < 6.4.0-47.1.21.24
- (no CPE)range: < 6.12.0-160000.35.1.160000.2.16
- (no CPE)range: < 6.4.0-150700.53.60.1
- (no CPE)range: < 6.12.0-160000.35.1
- (no CPE)range: < 6.4.0-150700.53.60.1
- (no CPE)range: < 6.4.0-150700.53.60.1
- (no CPE)range: < 6.4.0-150700.53.60.1
- (no CPE)range: < 6.12.0-160000.35.1
- (no CPE)range: < 6.12.0-160000.35.1
- (no CPE)range: < 6.4.0-150700.53.60.1
- (no CPE)range: < 6.4.0-47.1
- (no CPE)range: < 6.4.0-47.1
- (no CPE)range: < 6.12.0-160000.35.1
- (no CPE)range: < 6.4.0-150700.53.60.1
- (no CPE)range: < 6.12.0-160000.35.1
- (no CPE)range: < 6.12.0-160000.35.1
- (no CPE)range: < 6.12.0-160000.35.1
- (no CPE)range: < 6.12.0-160000.35.1
- (no CPE)range: < 6.4.0-47.1
- (no CPE)range: < 6.4.0-47.1
- (no CPE)range: < 1-150700.1.5.2
- (no CPE)range: < 1-150700.15.3.2
- (no CPE)range: < 6.4.0-150700.53.60.2
- (no CPE)range: < 6.12.0-160000.35.1
- (no CPE)range: < 6.12.0-160000.35.1
- (no CPE)range: < 6.12.0-160000.35.1
- (no CPE)range: < 6.4.0-150700.7.59.2
- (no CPE)range: < 6.4.0-150700.53.60.1
- (no CPE)range: < 6.4.0-150700.53.60.1
- (no CPE)range: < 6.12.0-160000.35.1
- (no CPE)range: < 6.12.0-160000.35.1
- (no CPE)range: < 6.4.0-47.1
- (no CPE)range: < 6.4.0-47.1
- (no CPE)range: < 6.12.0-160000.35.1
- (no CPE)range: < 6.4.0-150700.7.59.2
- (no CPE)range: < 6.4.0-150700.53.60.1
- (no CPE)range: < 6.12.0-160000.35.1
- (no CPE)range: < 6.12.0-160000.35.1
- (no CPE)range: < 6.4.0-150700.7.59.1
- (no CPE)range: < 6.4.0-150700.53.60.1
- (no CPE)range: < 6.12.0-160000.35.1
- (no CPE)range: < 6.12.0-160000.35.1
Patches
Vulnerability mechanics
References
8- git.kernel.org/stable/c/0c0eef8ccd2413b0a10eb6bbd3442333b1e64dd2nvdPatch
- git.kernel.org/stable/c/41aafca57de4a4c026701622bd4648f112a9edcdnvdPatch
- git.kernel.org/stable/c/4820847e036ff1035b01b69ad68dfc17e7028fe9nvdPatch
- git.kernel.org/stable/c/6a3ec6efbc4f90e0ccb2e71574f07351f19996f4nvdPatch
- git.kernel.org/stable/c/6aa9841d917532d0f2d932d1ff2f3a94305aaf47nvdPatch
- git.kernel.org/stable/c/88d386243ed374ac969dabd3bbc1409a31d81818nvdPatch
- git.kernel.org/stable/c/aca3ad0c262f54a5b5c95dda80a48365997d1224nvdPatch
- git.kernel.org/stable/c/df6f995358dc1f3c42484f5cfe241d7bd3e1cd15nvdPatch
News mentions
0No linked articles in our index yet.