VDB

CVE-2026-31441

CVE-2026-31441 PUBLISHED CVSS 9.300000190734863 CRITICAL

In the Linux kernel, the following vulnerability has been resolved: dmaengine: idxd: Fix memory leak when a wq is reset idxd_wq_disable_cleanup() which is called from the reset path for a workqueue, sets the wq type to NONE, which for other parts of the driver mean that the wq is empty (all its resources were released). Only set the wq type to NONE after its resources are released.

EPSS 0.02% · 3.4th percentile

Risk Scores

CVSS 4.0
9.300000190734863
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
EPSS Score
0.02%
3.4th percentile

Affected Products

VendorProductVersions
linuxlinux_kernel5.8, 5.8, 5.8
LinuxLinuxda32b28c95a79e399e18c03f8178f41aec9c66e4, da32b28c95a79e399e18c03f8178f41aec9c66e4, da32b28c95a79e399e18c03f8178f41aec9c66e4

Timeline

  • Apr 22, 2026 CVE Published
  • Apr 23, 2026 Security Advisory
  • May 18, 2026 EPSS Score
  • May 19, 2026 EPSS Score
  • May 20, 2026 EPSS Score
  • May 21, 2026 EPSS Score
  • May 22, 2026 EPSS Score
  • May 23, 2026 EPSS Score
  • May 24, 2026 EPSS Score
  • May 25, 2026 EPSS Score
  • May 26, 2026 EPSS Score
  • May 27, 2026 EPSS Score
Open in Interactive Console →
$ Console Community · 100/wk Open console ›