CVE-2026-31442

Summary

In the Linux kernel, the following vulnerability has been resolved:

dmaengine: idxd: Fix possible invalid memory access after FLR

In the case that the first Function Level Reset (FLR) concludes correctly, but in the second FLR the scratch area for the saved configuration cannot be allocated, it's possible for a invalid memory access to happen.

Always set the deallocated scratch area to NULL after FLR completes.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux98d187a989036096feaa2fef1ec3b2240ecdeacf < 504c0e6751001ac46917c73e703f2b1b92cfc026affected
LinuxLinux98d187a989036096feaa2fef1ec3b2240ecdeacf < 867d0c801f21370d561420fa32f2ea1a7dc3a22daffected
LinuxLinux98d187a989036096feaa2fef1ec3b2240ecdeacf < d6077df7b75d26e4edf98983836c05d00ebabd8daffected
LinuxLinux6.14affected
LinuxLinux0 < 6.14unaffected
LinuxLinux6.18.21 <= 6.18.*unaffected
LinuxLinux6.19.11 <= 6.19.*unaffected
LinuxLinux7.0 <= *unaffected

Weaknesses

References