CVE-2026-31431
Public on 2026-04-22
Modified on 2026-05-05
Description
In the Linux kernel, the following vulnerability has been resolved:
crypto: algif_aead - Revert to operating out-of-place
To mitigate this issue, we recommend that customers disable loading of the algif_aead module by running the following commands as an administrator user:
echo "install algif_aead /bin/false" > /etc/modprobe.d/disable-algif.conf
rmmod algif_aead
Some Amazon Linux 2 systems on the ARM64 architecture may fail the above rmmod command as they have the algif_aead module built-in. In this case, the following command and a reboot will mitigate the issue:
sudo grubby --update-kernel ALL --args "initcall_blacklist=algif_aead_init"
crypto: algif_aead - Revert to operating out-of-place
To mitigate this issue, we recommend that customers disable loading of the algif_aead module by running the following commands as an administrator user:
echo "install algif_aead /bin/false" > /etc/modprobe.d/disable-algif.conf
rmmod algif_aead
Some Amazon Linux 2 systems on the ARM64 architecture may fail the above rmmod command as they have the algif_aead module built-in. In this case, the following command and a reboot will mitigate the issue:
sudo grubby --update-kernel ALL --args "initcall_blacklist=algif_aead_init"
CVSS v3 Base Score
See breakdown
Affected Packages
| Platform | Package | Release Date | Advisory | Status |
|---|---|---|---|---|
| Amazon Linux 2 - Core | kernel | 2026-05-05 | ALAS2-2026-3289 | Fixed |
| Amazon Linux 2 - Kernel-5.10 Extra | kernel | 2026-05-05 | ALAS2KERNEL-5.10-2026-116 | Fixed |
| Amazon Linux 2 - Kernel-5.15 Extra | kernel | 2026-05-05 | ALAS2KERNEL-5.15-2026-101 | Fixed |
| Amazon Linux 2 - Kernel-5.4 Extra | kernel | 2026-05-05 | ALAS2KERNEL-5.4-2026-120 | Fixed |
| Amazon Linux 2023 | kernel | 2026-05-05 | ALAS2023-2026-1651 | Fixed |
| Amazon Linux 2 - Livepatch Extra | kernel-livepatch-5.10.248-247.988 | 2026-05-04 | ALAS2LIVEPATCH-2026-287 | Fixed |
| Amazon Linux 2 - Livepatch Extra | kernel-livepatch-5.10.251-248.983 | 2026-05-04 | ALAS2LIVEPATCH-2026-286 | Fixed |
| Amazon Linux 2 - Livepatch Extra | kernel-livepatch-5.10.252-250.1005 | 2026-05-04 | ALAS2LIVEPATCH-2026-285 | Fixed |
| Amazon Linux 2 - Livepatch Extra | kernel-livepatch-5.10.252-250.992 | 2026-05-04 | ALAS2LIVEPATCH-2026-288 | Fixed |
| Amazon Linux 2023 | kernel-livepatch-6.1.163-186.299 | 2026-05-04 | ALAS2023LIVEPATCH-2026-120 | Fixed |
| Amazon Linux 2023 | kernel-livepatch-6.1.164-196.303 | 2026-05-04 | ALAS2023LIVEPATCH-2026-117 | Fixed |
| Amazon Linux 2023 | kernel-livepatch-6.1.166-197.305 | 2026-05-04 | ALAS2023LIVEPATCH-2026-118 | Fixed |
| Amazon Linux 2023 | kernel-livepatch-6.1.168-202.320 | 2026-05-04 | ALAS2023LIVEPATCH-2026-119 | Fixed |
| Amazon Linux 2023 | kernel-livepatch-6.12.73-95.123 | 2026-05-04 | ALAS2023LIVEPATCH-2026-121 | Fixed |
| Amazon Linux 2023 | kernel-livepatch-6.12.74-98.124 | 2026-05-04 | ALAS2023LIVEPATCH-2026-124 | Fixed |
| Amazon Linux 2023 | kernel-livepatch-6.12.77-99.140 | 2026-05-04 | ALAS2023LIVEPATCH-2026-125 | Fixed |
| Amazon Linux 2023 | kernel-livepatch-6.12.79-101.147 | 2026-05-04 | ALAS2023LIVEPATCH-2026-123 | Fixed |
| Amazon Linux 2023 | kernel-livepatch-6.12.80-105.147 | 2026-05-04 | ALAS2023LIVEPATCH-2026-122 | Fixed |
| Amazon Linux 2023 | kernel-livepatch-6.18.15-14.217 | 2026-05-04 | ALAS2023LIVEPATCH-2026-127 | Fixed |
| Amazon Linux 2023 | kernel-livepatch-6.18.16-18.222 | 2026-05-04 | ALAS2023LIVEPATCH-2026-129 | Fixed |
| Amazon Linux 2023 | kernel-livepatch-6.18.20-20.229 | 2026-05-04 | ALAS2023LIVEPATCH-2026-128 | Fixed |
| Amazon Linux 2023 | kernel-livepatch-6.18.8-9.213 | 2026-05-04 | ALAS2023LIVEPATCH-2026-126 | Fixed |
| Amazon Linux 2023 | kernel6.12 | 2026-05-05 | ALAS2023-2026-1650 | Fixed |
| Amazon Linux 2023 | kernel6.18 | 2026-05-05 | ALAS2023-2026-1649 | Fixed |
CVSS Scores
| Score Type | Score | Vector | |
|---|---|---|---|
| Amazon Linux | CVSSv3 | 7.8 | CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |