CVE-2026-31461

MEDIUM

drm/amd/display: Fix drm_edid leak in amdgpu_dm

Title source: cna

Description

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Fix drm_edid leak in amdgpu_dm [WHAT] When a sink is connected, aconnector->drm_edid was overwritten without freeing the previous allocation, causing a memory leak on resume. [HOW] Free the previous drm_edid before updating it. (cherry picked from commit 52024a94e7111366141cfc5d888b2ef011f879e5)

References (3)

Core 3

Core References

https://git.kernel.org/stable/c/eb95595194e4755b62360aa821f40a79b0953105

https://git.kernel.org/stable/c/52db857e94b9be4e6315586602b0257d1d2b165a

https://git.kernel.org/stable/c/37c2caa167b0b8aca4f74c32404c5288b876a2a3

Scores

CVSS v3 5.5

EPSS 0.0001

EPSS Percentile 3.4%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Details

CWE

CWE-401

Status published

Products (13)

Linux/Linux < 6.13

Linux/Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 - 37c2caa167b0b8aca4f74c32404c5288b876a2a3

Linux/Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 - 52db857e94b9be4e6315586602b0257d1d2b165a

Linux/Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 - eb95595194e4755b62360aa821f40a79b0953105

Linux/Linux 48edb2a4256eedf6c92eecf2bc7744e6ecb44b5e - 37c2caa167b0b8aca4f74c32404c5288b876a2a3

Linux/Linux 48edb2a4256eedf6c92eecf2bc7744e6ecb44b5e - 52db857e94b9be4e6315586602b0257d1d2b165a

Linux/Linux 48edb2a4256eedf6c92eecf2bc7744e6ecb44b5e - eb95595194e4755b62360aa821f40a79b0953105

Linux/Linux 6.13

Linux/Linux 6.18.21 - 6.18.*

Linux/Linux 6.19.11 - 6.19.*

... and 3 more

Published Apr 22, 2026

Tracked Since Apr 22, 2026