CVE-2026-31644 net: lan966x: fix use-after-free and leak in lan966x_fdma_reload()

🗓️ 24 Apr 2026 14:44:58Reported by LinuxType

Fix use after free and leak in lan966x_fdma_reload by deferring old page release.

Reporter	Title	Published	Views	Family All 24
ATTACKERKB	CVE-2026-31644	24 Apr 202614:44	–	attackerkb
AstraLinux	Astra Linux - уязвимость в linux-5.10	20 May 202605:53	–	astralinux
Circl	CVE-2026-31644	28 Apr 202605:00	–	circl
CNNVD	Linux kernel 安全漏洞	24 Apr 202600:00	–	cnnvd
CVE	CVE-2026-31644	24 Apr 202614:44	–	cve
Debian	[SECURITY] [DSA 6238-1] linux security update	30 Apr 202620:05	–	debian
Debian CVE	CVE-2026-31644	24 Apr 202614:44	–	debiancve
Tenable Nessus	Debian dsa-6238 : ata-modules-6.12.74+deb13+1-armmp-di - security update	30 Apr 202600:00	–	nessus
Tenable Nessus	openSUSE 16 Security Update : kernel (openSUSE-SU-2026:20826-1)	1 Jun 202600:00	–	nessus
Tenable Nessus	SUSE SLES16 Security Update : kernel (SUSE-SU-2026:21860-1)	2 Jun 202600:00	–	nessus

[
  {
    "product": "Linux",
    "vendor": "Linux",
    "defaultStatus": "unaffected",
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "programFiles": [
      "drivers/net/ethernet/microchip/lan966x/lan966x_fdma.c"
    ],
    "versions": [
      {
        "version": "89ba464fcf548d64bc7215dfe769f791330ae8b6",
        "lessThan": "691082c0b93c13a5e068c0905f673060bddc204e",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "89ba464fcf548d64bc7215dfe769f791330ae8b6",
        "lessThan": "92a673019943770930e2a8bfd52e1aad47a1fc1f",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "89ba464fcf548d64bc7215dfe769f791330ae8b6",
        "lessThan": "9950e9199b3dfdfbde0b8d96ba947d7b11243801",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "89ba464fcf548d64bc7215dfe769f791330ae8b6",
        "lessThan": "59c3d55a946cacdb4181600723c20ac4f4c20c84",
        "status": "affected",
        "versionType": "git"
      }
    ]
  },
  {
    "product": "Linux",
    "vendor": "Linux",
    "defaultStatus": "affected",
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "programFiles": [
      "drivers/net/ethernet/microchip/lan966x/lan966x_fdma.c"
    ],
    "versions": [
      {
        "version": "6.12",
        "status": "affected"
      },
      {
        "version": "0",
        "lessThan": "6.12",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "6.12.82",
        "lessThanOrEqual": "6.12.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "6.18.23",
        "lessThanOrEqual": "6.18.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "6.19.13",
        "lessThanOrEqual": "6.19.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "7.0",
        "lessThanOrEqual": "*",
        "status": "unaffected",
        "versionType": "original_commit_for_fix"
      }
    ]
  }
]

Source	Link
git	www.git.kernel.org/stable/c/691082c0b93c13a5e068c0905f673060bddc204e
git	www.git.kernel.org/stable/c/59c3d55a946cacdb4181600723c20ac4f4c20c84
git	www.git.kernel.org/stable/c/9950e9199b3dfdfbde0b8d96ba947d7b11243801
git	www.git.kernel.org/stable/c/92a673019943770930e2a8bfd52e1aad47a1fc1f

11 May 2026 22:12Current

CVSS 3.17.8

EPSS0.00015