VDB

DEBIAN-CVE-2026-31523

DEBIAN-CVE-2026-31523 PUBLISHED CVSS 4.699999809265137 MEDIUM

In the Linux kernel, the following vulnerability has been resolved: nvme-pci: ensure we're polling a polled queue A user can change the polled queue count at run time. There's a brief window during a reset where a hipri task may try to poll that queue before the block layer has updated the queue maps, which would race with the now interrupt driven queue and may cause double completions.

Risk Scores

CVSS 3.1
4.699999809265137
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H

Affected Products

VendorProductVersions
Debian:11linux-6.16.1.164-1, 6.1.162-1, 6.1.159-1
Debian:13linux0, 6.12.38-1, 6.12.41-1
Debian:12linux6.16.11-1, 6.16.12-1, *
Debian:14linux6.17.10-1, 6.16.10-1, *
Debian:11linux6.1.153-1, 6.1.158-1, 6.1.159-1

Timeline

  • Apr 22, 2026 CVE Published
  • May 2, 2026 CVE Updated
Open in Interactive Console →
$ Console Community · 100/wk Open console ›