CVE-2026-31442 dmaengine: idxd: Fix possible invalid memory access after FLR

🗓️ 22 Apr 2026 13:53:39Reported by LinuxType

Fixes invalid memory access in dma engine after function level reset by nulling deallocated scratch area when allocation fails.

Reporter	Title	Published	Views	Family All 14
AstraLinux	Astra Linux - уязвимость в linux-5.10	20 May 202605:53	–	astralinux
CNNVD	Linux kernel 安全漏洞	22 Apr 202600:00	–	cnnvd
CVE	CVE-2026-31442	22 Apr 202613:53	–	cve
Debian CVE	CVE-2026-31442	22 Apr 202613:53	–	debiancve
EUVD	EUVD-2026-24772	22 Apr 202615:31	–	euvd
NVD	CVE-2026-31442	22 Apr 202614:16	–	nvd
OSV	BELL-CVE-2026-31442 CVE-2026-31442 does not affect BellSoft software	23 Apr 202606:09	–	osv
OSV	DEBIAN-CVE-2026-31442	22 Apr 202614:16	–	osv
OSV	UBUNTU-CVE-2026-31442	22 Apr 202614:16	–	osv
Positive Technologies	PT-2026-34347	22 Apr 202600:00	–	ptsecurity

[
  {
    "product": "Linux",
    "vendor": "Linux",
    "defaultStatus": "unaffected",
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "programFiles": [
      "drivers/dma/idxd/init.c"
    ],
    "versions": [
      {
        "version": "98d187a989036096feaa2fef1ec3b2240ecdeacf",
        "lessThan": "504c0e6751001ac46917c73e703f2b1b92cfc026",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "98d187a989036096feaa2fef1ec3b2240ecdeacf",
        "lessThan": "867d0c801f21370d561420fa32f2ea1a7dc3a22d",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "98d187a989036096feaa2fef1ec3b2240ecdeacf",
        "lessThan": "d6077df7b75d26e4edf98983836c05d00ebabd8d",
        "status": "affected",
        "versionType": "git"
      }
    ]
  },
  {
    "product": "Linux",
    "vendor": "Linux",
    "defaultStatus": "affected",
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "programFiles": [
      "drivers/dma/idxd/init.c"
    ],
    "versions": [
      {
        "version": "6.14",
        "status": "affected"
      },
      {
        "version": "0",
        "lessThan": "6.14",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "6.18.21",
        "lessThanOrEqual": "6.18.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "6.19.11",
        "lessThanOrEqual": "6.19.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "7.0",
        "lessThanOrEqual": "*",
        "status": "unaffected",
        "versionType": "original_commit_for_fix"
      }
    ]
  }
]

Source	Link
git	www.git.kernel.org/stable/c/d6077df7b75d26e4edf98983836c05d00ebabd8d
git	www.git.kernel.org/stable/c/504c0e6751001ac46917c73e703f2b1b92cfc026
git	www.git.kernel.org/stable/c/867d0c801f21370d561420fa32f2ea1a7dc3a22d

11 May 2026 22:08Current

CVSS 3.17.8

EPSS0.00015