IM
IronMonkey Threat Research

CVE-2026-31441 MEDIUM

Published: 2026-04-22 | Last Modified: 2026-07-14 | Status: Modified

Description

In the Linux kernel, the following vulnerability has been resolved: dmaengine: idxd: Fix memory leak when a wq is reset idxd_wq_disable_cleanup() which is called from the reset path for a workqueue, sets the wq type to NONE, which for other parts of the driver mean that the wq is empty (all its resources were released). Only set the wq type to NONE after its resources are released.

CVSS Metrics

Base Score: 5.5 (MEDIUM)

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Attack VectorLOCAL
Attack ComplexityLOW
Privileges RequiredLOW
User InteractionNONE
ScopeUNCHANGED
Confidentiality ImpactNONE
Integrity ImpactNONE
Availability ImpactHIGH

Source: [email protected]

Type: Primary

Exploitability Score: 1.8

Impact Score: 3.6

Weaknesses

Source Type Description
[email protected] Primary
en CWE-401

Affected Products

Vendor Product Version Update Type
linux linux_kernel * <built-in method update of dict object at 0x702bcbbf5fc0> Operating System
linux linux_kernel * <built-in method update of dict object at 0x702ba70f5ac0> Operating System
linux linux_kernel * <built-in method update of dict object at 0x702bcbbf5dc0> Operating System
linux linux_kernel * <built-in method update of dict object at 0x702bde4f2b80> Operating System
linux linux_kernel * <built-in method update of dict object at 0x702ba70f6b00> Operating System
linux linux_kernel * <built-in method update of dict object at 0x702ba70f4840> Operating System
linux linux_kernel 5.8 <built-in method update of dict object at 0x702bde4f2780> Operating System
linux linux_kernel 5.8 <built-in method update of dict object at 0x702bdcc99380> Operating System
linux linux_kernel 5.8 <built-in method update of dict object at 0x702bde4f0c80> Operating System
linux linux_kernel 7.0 <built-in method update of dict object at 0x702ba70f6000> Operating System
linux linux_kernel 7.0 <built-in method update of dict object at 0x702bcbbf7200> Operating System
linux linux_kernel 7.0 <built-in method update of dict object at 0x702ba70f7f80> Operating System
linux linux_kernel 7.0 <built-in method update of dict object at 0x702b53f52f80> Operating System
linux linux_kernel 7.0 <built-in method update of dict object at 0x702bdc0d2340> Operating System

Affected Configurations

Operator: OR

Vulnerable CPE
Yes cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Yes cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Yes cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Yes cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Yes cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Yes cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Yes cpe:2.3:o:linux:linux_kernel:5.8:-:*:*:*:*:*:*
Yes cpe:2.3:o:linux:linux_kernel:5.8:rc6:*:*:*:*:*:*
Yes cpe:2.3:o:linux:linux_kernel:5.8:rc7:*:*:*:*:*:*
Yes cpe:2.3:o:linux:linux_kernel:7.0:rc1:*:*:*:*:*:*
Yes cpe:2.3:o:linux:linux_kernel:7.0:rc2:*:*:*:*:*:*
Yes cpe:2.3:o:linux:linux_kernel:7.0:rc3:*:*:*:*:*:*
Yes cpe:2.3:o:linux:linux_kernel:7.0:rc4:*:*:*:*:*:*
Yes cpe:2.3:o:linux:linux_kernel:7.0:rc5:*:*:*:*:*:*

References

Notification
Message here