CVE-2026-31677

*** Pendiente de traducción *** In the Linux kernel, the following vulnerability has been resolved:<br /> <br /> crypto: af_alg - limit RX SG extraction by receive buffer budget<br /> <br /> Make af_alg_get_rsgl() limit each RX scatterlist extraction to the<br /> remaining receive buffer budget.<br /> <br /> af_alg_get_rsgl() currently uses af_alg_readable() only as a gate<br /> before extracting data into the RX scatterlist. Limit each extraction<br /> to the remaining af_alg_rcvbuf(sk) budget so that receive-side<br /> accounting matches the amount of data attached to the request.<br /> <br /> If skcipher cannot obtain enough RX space for at least one chunk while<br /> more data remains to be processed, reject the recvmsg call instead of<br /> rounding the request length down to zero.