CVE-2026-31441

MEDIUM

dmaengine: idxd: Fix memory leak when a wq is reset

Title source: cna

Description

In the Linux kernel, the following vulnerability has been resolved: dmaengine: idxd: Fix memory leak when a wq is reset idxd_wq_disable_cleanup() which is called from the reset path for a workqueue, sets the wq type to NONE, which for other parts of the driver mean that the wq is empty (all its resources were released). Only set the wq type to NONE after its resources are released.

References (6)

Core 6

Core References

https://git.kernel.org/stable/c/a16098a2f0c11ee5e04e23aa7478ca1fcfb0f658

https://git.kernel.org/stable/c/54d77cc0c40ca2f894859dc7b3c52997574f1a2a

https://git.kernel.org/stable/c/39c1504e0e76bcfb93991fd94288a83e05d13b51

https://git.kernel.org/stable/c/a9e7815d38629bcf59d3005001f1f315424a58de

https://git.kernel.org/stable/c/0c3d3ac57e3c52b570b8c695903306bff07e04c8

https://git.kernel.org/stable/c/d9cfb5193a047a92a4d3c0e91ea4cc87c8f7c478

Scores

CVSS v3 5.5

EPSS 0.0001

EPSS Percentile 3.5%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Details

CWE

CWE-401

Status published

Products (19)

Linux/Linux < 5.8

Linux/Linux 2a2df2bd10de44c3804661ed15157817c12d6291

Linux/Linux 5.7.10 - 5.8

Linux/Linux 5.8

Linux/Linux 6.1.168 - 6.1.*

Linux/Linux 6.12.80 - 6.12.*

Linux/Linux 6.18.21 - 6.18.*

Linux/Linux 6.19.11 - 6.19.*

Linux/Linux 6.6.131 - 6.6.*

Linux/Linux 7.0

... and 9 more

Published Apr 22, 2026

Tracked Since Apr 22, 2026