HIGHCVE-2026-31442Published Modified CNA Linux
CVE-2026-31442: dmaengine: idxd: Fix possible invalid memory access after FLR
In the Linux kernel, the following vulnerability has been resolved: dmaengine: idxd: Fix possible invalid memory access after FLR In the case that the first Function Level Reset (FLR) concludes correctly, but in the second FLR the scratch area for the saved configuration cannot be allocated, it's possible for a invalid memory access to happen. Always set the deallocated scratch area to NULL after FLR completes.
Metrics
- CVSS v3.1
- 7.8
- Severity
- HIGH
- Fixed in
- 0
- Affected Products
- 2
Fix available
0504c0e6751001ac46917c73e703f2b1b92cfc0266.18.216.19.117.0867d0c801f21370d561420fa32f2ea1a7dc3a22dd6077df7b75d26e4edf98983836c05d00ebabd8d
Affected packages
- Linux / Linux< 504c0e6751001ac46917c73e703f2b1b92cfc026 (from 98d187a989036096feaa2fef1ec3b2240ecdeacf) · < 867d0c801f21370d561420fa32f2ea1a7dc3a22d (from 98d187a989036096feaa2fef1ec3b2240ecdeacf) · < d6077df7b75d26e4edf98983836c05d00ebabd8d (from 98d187a989036096feaa2fef1ec3b2240ecdeacf)
- Linux / Linux6.14Fixed in 0, 6.18.21, 6.19.11, 7.0
CVSS Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H