CVE-2026-31442

high

Description

In the Linux kernel, the following vulnerability has been resolved: dmaengine: idxd: Fix possible invalid memory access after FLR In the case that the first Function Level Reset (FLR) concludes correctly, but in the second FLR the scratch area for the saved configuration cannot be allocated, it's possible for a invalid memory access to happen. Always set the deallocated scratch area to NULL after FLR completes.

References

https://git.kernel.org/stable/c/d6077df7b75d26e4edf98983836c05d00ebabd8d

https://git.kernel.org/stable/c/867d0c801f21370d561420fa32f2ea1a7dc3a22d

https://git.kernel.org/stable/c/504c0e6751001ac46917c73e703f2b1b92cfc026

Details

Source: Mitre, NVD

Published: 2026-04-22

Updated: 2026-04-23

Risk Information

CVSS v2

Base Score: 6.6

Vector: CVSS2#AV:L/AC:L/Au:N/C:C/I:N/A:C

Severity: Medium

CVSS v3

Base Score: 7.7

Vector: CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H

Severity: High

EPSS

EPSS: 0.00017