What is CVE-2026-31668?

CVE-2026-31668 is a critical-severity vulnerability in Linux. CVSS score: 9.8/10. Published 2026-04-24.

How severe is CVE-2026-31668?

Critical severity. CVSS v3 base score is 9.8 out of 10.

Vulnerability in Linux

CVE-2026-31668

In the Linux kernel, the following vulnerability has been resolved: seg6: separate dst_cache for input and output paths in seg6 lwtunnel The seg6 lwtunnel uses a single dst_cache per encap route, shared between seg6_input_core() and seg6…

EPSS: 0.001 (22.9th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 9.8 (Critical). Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H.

Affected products

Linux — versions 6c8702c60b88651072460f3f4026c7dfe2521d12, 4.10, 0

References

git.kernel.org/stable/c/1dec91d3b1cefb82635761b7812154af3ef46449
git.kernel.org/stable/c/750569d6987a0ff46317a4b86eb3907e296287bf
git.kernel.org/stable/c/57d0374d14fa667dec6952173b93e7e84486d5c9
git.kernel.org/stable/c/84d458018b147176b259347103fccb7e93abd2b1
git.kernel.org/stable/c/6305ad032b03d2ea4181b953a66e19a9a6ed053c
git.kernel.org/stable/c/fb56de5d99218de49d5d43ef3a99e062ecd0f9a1
git.kernel.org/stable/c/17d87d42874f5d6c1a0ccc6d9190dfe82a9a7a6a
git.kernel.org/stable/c/c3812651b522fe8437ebb7063b75ddb95b571643

Frequently asked questions

What is CVE-2026-31668?: CVE-2026-31668 is a critical-severity vulnerability in Linux. CVSS score: 9.8/10. Published 2026-04-24.
How severe is CVE-2026-31668?: Critical severity. CVSS v3 base score is 9.8 out of 10.