VDB
CVE-2026-31441
CVE-2026-31441
PUBLISHED
CVSS 9.300000190734863 CRITICAL
In the Linux kernel, the following vulnerability has been resolved: dmaengine: idxd: Fix memory leak when a wq is reset idxd_wq_disable_cleanup() which is called from the reset path for a workqueue, sets the wq type to NONE, which for other parts of the driver mean that the wq is empty (all its resources were released). Only set the wq type to NONE after its resources are released.
EPSS 0.02% · 3.4th percentile
Risk Scores
CVSS 4.0
9.300000190734863
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
EPSS Score
0.02%
3.4th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| linux | linux_kernel | 5.8, 5.8, 5.8 |
| Linux | Linux | da32b28c95a79e399e18c03f8178f41aec9c66e4, da32b28c95a79e399e18c03f8178f41aec9c66e4, da32b28c95a79e399e18c03f8178f41aec9c66e4 |
Timeline
- Apr 22, 2026 CVE Published
- Apr 23, 2026 Security Advisory
- May 18, 2026 EPSS Score
- May 19, 2026 EPSS Score
- May 20, 2026 EPSS Score
- May 21, 2026 EPSS Score
- May 22, 2026 EPSS Score
- May 23, 2026 EPSS Score
- May 24, 2026 EPSS Score
- May 25, 2026 EPSS Score
- May 26, 2026 EPSS Score
- May 27, 2026 EPSS Score
References
- https://git.kernel.org/stable/c/a16098a2f0c11ee5e04e23aa7478ca1fcfb0f658 url
- https://git.kernel.org/stable/c/54d77cc0c40ca2f894859dc7b3c52997574f1a2a url
- https://git.kernel.org/stable/c/39c1504e0e76bcfb93991fd94288a83e05d13b51 url
- https://git.kernel.org/stable/c/a9e7815d38629bcf59d3005001f1f315424a58de url
- https://git.kernel.org/stable/c/0c3d3ac57e3c52b570b8c695903306bff07e04c8 url
- https://git.kernel.org/stable/c/d9cfb5193a047a92a4d3c0e91ea4cc87c8f7c478 url
- https://nvd.nist.gov/vuln/detail/CVE-2026-31441 advisory
- https://lists.debian.org/debian-lts-announce/2026/05/msg00004.html advisory
- https://lists.debian.org/debian-lts-announce/2026/05/msg00005.html advisory
- https://lists.debian.org/debian-security-announce/2026/msg00154.html advisory
- https://lists.debian.org/debian-security-announce/2026/msg00148.html advisory