Quick remediation

Created on 2026-04-30 10:07, updated on 2026-04-30 10:07, by sync_user
JSON CVE-2026-31431
vulnerability:information=remediation

Kernel module (without reboot)

If your system use dynamic loading of kernel module, the following can be done:

rmmod algif_aead to ensure that the module is not loaded

Create and edit the file /etc/modprobe.d/disable-algif.conf and add install algif_aead /bin/false

Kernel with algif_aead (such as RedHat)

Based on the following https://csirt.egi.eu/2026/04/30/critical-vulnerability-in-linux-kernel/ reference, this can be done:

sudo grubby --update-kernel=ALL --args="initcall_blacklist=algif_aead_init"; sudo reboot"

which will require a reboot.

BPF filtering

There are also options there.

Meta
[
  {
    "tags": [
      "vulnerability:information=remediation"
    ]
  }
]