CVE-2026-31559

Summary

In the Linux kernel, the following vulnerability has been resolved:

LoongArch: Fix missing NULL checks for kstrdup()

  1. Replace "of_find_node_by_path("/")" with "of_root" to avoid multiple calls to "of_node_put()".

  2. Fix a potential kernel oops during early boot when memory allocation fails while parsing CPU model from device tree.

Affected Software

VendorProductVersion RangeStatus
LinuxLinuxfacc69f43502c135c16b97d5ded7253f15597912 < 5e7fde2c551f86e6c3de3fd7a9b1f52806ac8db0affected
LinuxLinux70a2365e18affc5ebdaab1ca6a0b3c4f3aac2ee8 < a1da957c25cf751a2dce8fb7777f82ccbac0cb3eaffected
LinuxLinux70a2365e18affc5ebdaab1ca6a0b3c4f3aac2ee8 < b61a309743322fb57fb9afa9aa3495ac758e4f5eaffected
LinuxLinux70a2365e18affc5ebdaab1ca6a0b3c4f3aac2ee8 < 3a28daa9b7d7c2ddf2c722e9e95d7e0928bf0cd1affected
LinuxLinux620805dc674eab3055543496a7ef25beb9ffd2a8affected
LinuxLinux8dfeedf9eceadc1a2fc9066b4c5230690d1cad48affected
LinuxLinux6.12.43 < 6.12.80affected
LinuxLinux6.15.11 < 6.16affected
LinuxLinux6.16.2 < 6.17affected
LinuxLinux6.17affected
LinuxLinux0 < 6.17unaffected
LinuxLinux6.12.80 <= 6.12.*unaffected
LinuxLinux6.18.21 <= 6.18.*unaffected
LinuxLinux6.19.11 <= 6.19.*unaffected
LinuxLinux7.0 <= *unaffected

Weaknesses

References