CVE-2026-31670 - Vulnerability Details

In the Linux kernel, the following vulnerability has been resolved:

net: rfkill: prevent unlimited numbers of rfkill events from being created

Userspace can create an unlimited number of rfkill events if the system
is so configured, while not consuming them from the rfkill file
descriptor, causing a potential out of memory situation. Prevent this
from bounding the number of pending rfkill events at a "large" number
(i.e. 1000) to prevent abuses like this.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

No EPSS score available.

Key SSVC decision points have not yet been added.

Vendors	Products
Linux Subscribe	Linux Kernel Subscribe

No data.

Advisories

No advisories yet.

Fixes

Solution

No solution given by the vendor.

Workaround

No workaround given by the vendor.

References

Link	Providers
https://git.kernel.org/stable/c/4bcd1615a4e2a185ae9edd27b4143d7dfa7134f4
https://git.kernel.org/stable/c/673d2a3eef6e0ee9736501a150c9e4024a4e60a6
https://git.kernel.org/stable/c/80ce4cb026f0a4c4532b6cad827b44debda6256a
https://git.kernel.org/stable/c/82843afc19012a29ba863961ef494165aa1a88f4
https://git.kernel.org/stable/c/a8c26800e0220e1550af012f5a20e50f5c78864d
https://git.kernel.org/stable/c/b1e0c8d3ab58a0161db487bf5fc47adfcaf5d5ca
https://git.kernel.org/stable/c/e3842779547c83150569071d9980517cc9029fc0
https://git.kernel.org/stable/c/ea245d78dec594372e27d8c79616baf49e98a4a1

History

Fri, 24 Apr 2026 15:00:00 +0000

Type	Values Removed	Values Added
Description		In the Linux kernel, the following vulnerability has been resolved: net: rfkill: prevent unlimited numbers of rfkill events from being created Userspace can create an unlimited number of rfkill events if the system is so configured, while not consuming them from the rfkill file descriptor, causing a potential out of memory situation. Prevent this from bounding the number of pending rfkill events at a "large" number (i.e. 1000) to prevent abuses like this.
Title		net: rfkill: prevent unlimited numbers of rfkill events from being created
First Time appeared		Linux Linux linux Kernel
CPEs		cpe:2.3:o:linux:linux_kernel::::::::
Vendors & Products		Linux Linux linux Kernel
References		https://git.kernel.org/stable/c/4bcd1615a4e2a185ae9edd27b4143d7dfa7134f4 https://git.kernel.org/stable/c/673d2a3eef6e0ee9736501a150c9e4024a4e60a6 https://git.kernel.org/stable/c/80ce4cb026f0a4c4532b6cad827b44debda6256a https://git.kernel.org/stable/c/82843afc19012a29ba863961ef494165aa1a88f4 https://git.kernel.org/stable/c/a8c26800e0220e1550af012f5a20e50f5c78864d https://git.kernel.org/stable/c/b1e0c8d3ab58a0161db487bf5fc47adfcaf5d5ca https://git.kernel.org/stable/c/e3842779547c83150569071d9980517cc9029fc0 https://git.kernel.org/stable/c/ea245d78dec594372e27d8c79616baf49e98a4a1

Projects

Sign in to view the affected projects.

MITRE

Status: PUBLISHED

Assigner: Linux

Published: 2026-04-24T14:45:17.958Z

Updated: 2026-04-24T14:45:17.958Z

Reserved: 2026-03-09T15:48:24.130Z

Link: CVE-2026-31670

Vulnrichment

No data.

NVD

Status : Awaiting Analysis

Published: 2026-04-24T15:16:46.790

Modified: 2026-04-24T17:51:40.810

Link: CVE-2026-31670

Redhat

No data.

OpenCVE Enrichment

No data.

Weaknesses

No weakness.

Metrics

Affected Vendors & Products

Projects

Metrics

Affected Vendors & Products

Projects

JSON object

JSON object

JSON object

JSON object

JSON object