CVE-2026-31474

🗓️ 22 Apr 2026 13:54:03Reported by LinuxType

Linux kernel can:isotp fixes tx.buf use-after-free by freeing at sk_destruct.

Reporter	Title	Published	Views	Family All 41
AlmaLinux	Important: kernel security, bug fix, and enhancement update	22 Jun 202600:00	–	almalinux
AstraLinux	Astra Linux – Vulnerability in Linux 5.10	3 May 202623:59	–	astralinux
CBLMariner	CVE-2026-31474 affecting package kernel for versions less than 6.6.134.1-2	3 May 202620:52	–	cbl_mariner
CNNVD	Linux kernel 安全漏洞	22 Apr 202600:00	–	cnnvd
Cvelist	CVE-2026-31474 can: isotp: fix tx.buf use-after-free in isotp_sendmsg()	22 Apr 202613:54	–	cvelist
Debian	[SECURITY] [DSA 6238-1] linux security update	30 Apr 202620:05	–	debian
Debian CVE	CVE-2026-31474	22 Apr 202613:54	–	debiancve
Tenable Nessus	Debian dsa-6238 : ata-modules-6.12.74+deb13+1-armmp-di - security update	30 Apr 202600:00	–	nessus
Tenable Nessus	RHEL 10 : kernel (RHSA-2026:27288)	21 Jun 202600:00	–	nessus
Tenable Nessus	RHEL 10 : kernel (RHSA-2026:27731)	22 Jun 202600:00	–	nessus

NVD

Vulners

CNA

Node

linux linux_kernelRange6.4.1–6.6.131

linux linux_kernelRange6.7–6.12.80

linux linux_kernelRange6.13–6.18.21

linux linux_kernelRange6.19–6.19.11

linux linux_kernelMatch6.4-

linux linux_kernelMatch7.0rc1

linux linux_kernelMatch7.0rc2

linux linux_kernelMatch7.0rc3

linux linux_kernelMatch7.0rc4

linux linux_kernelMatch7.0rc5

linux linux_kernelMatch7.0rc6

linux linux_kernelMatch7.0rc7

[
  {
    "product": "Linux",
    "vendor": "Linux",
    "defaultStatus": "unaffected",
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "programFiles": [
      "net/can/isotp.c"
    ],
    "versions": [
      {
        "version": "96d1c81e6a0478535342dff6c730adb076cd84e8",
        "lessThan": "cb3d6efa78460e6d50bf68806d0db66265709f64",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "96d1c81e6a0478535342dff6c730adb076cd84e8",
        "lessThan": "9649d051e54413049c009638ec1dc23962c884a4",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "96d1c81e6a0478535342dff6c730adb076cd84e8",
        "lessThan": "eec8a1b18a79600bd4419079dc0026c1db72a830",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "96d1c81e6a0478535342dff6c730adb076cd84e8",
        "lessThan": "2e62e7051eca75a7f2e3d52d62ec10d7d7aa358c",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "96d1c81e6a0478535342dff6c730adb076cd84e8",
        "lessThan": "424e95d62110cdbc8fd12b40918f37e408e35a92",
        "status": "affected",
        "versionType": "git"
      }
    ]
  },
  {
    "product": "Linux",
    "vendor": "Linux",
    "defaultStatus": "affected",
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "programFiles": [
      "net/can/isotp.c"
    ],
    "versions": [
      {
        "version": "6.4",
        "status": "affected"
      },
      {
        "version": "0",
        "lessThan": "6.4",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "6.6.131",
        "lessThanOrEqual": "6.6.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "6.12.80",
        "lessThanOrEqual": "6.12.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "6.18.21",
        "lessThanOrEqual": "6.18.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "6.19.11",
        "lessThanOrEqual": "6.19.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "7.0",
        "lessThanOrEqual": "*",
        "status": "unaffected",
        "versionType": "original_commit_for_fix"
      }
    ]
  }
]

Source	Link
git	www.git.kernel.org/stable/c/cb3d6efa78460e6d50bf68806d0db66265709f64
git	www.git.kernel.org/stable/c/424e95d62110cdbc8fd12b40918f37e408e35a92
git	www.git.kernel.org/stable/c/2e62e7051eca75a7f2e3d52d62ec10d7d7aa358c
git	www.git.kernel.org/stable/c/eec8a1b18a79600bd4419079dc0026c1db72a830
git	www.git.kernel.org/stable/c/9649d051e54413049c009638ec1dc23962c884a4

17 Jun 2026 10:33Current

5.6Medium risk

Vulners AI Score5.6

CVSS 3.17.8

EPSS0.00125

CWE-416