CVE-2026-31567

MEDIUM

PM: sleep: Drop spurious WARN_ON() from pm_restore_gfp_mask()

Title source: cna

Description

In the Linux kernel, the following vulnerability has been resolved: PM: sleep: Drop spurious WARN_ON() from pm_restore_gfp_mask() Commit 35e4a69b2003f ("PM: sleep: Allow pm_restrict_gfp_mask() stacking") introduced refcount-based GFP mask management that warns when pm_restore_gfp_mask() is called with saved_gfp_count == 0. Some hibernation paths call pm_restore_gfp_mask() defensively where the GFP mask may or may not be restricted depending on the execution path. For example, the uswsusp interface invokes it in SNAPSHOT_CREATE_IMAGE, SNAPSHOT_UNFREEZE, and snapshot_release(). Before the stacking change this was a silent no-op; it now triggers a spurious WARNING. Remove the WARN_ON() wrapper from the !saved_gfp_count check while retaining the check itself, so that defensive calls remain harmless without producing false warnings. [ rjw: Subject tweak ]

References (3)

https://git.kernel.org/stable/c/3025ca5daa9d682b629c0c958b538e41deeb559d

https://git.kernel.org/stable/c/f19d1323aa3dd7ead469aef47d9085f8939565d9

https://git.kernel.org/stable/c/a8d51efb5929ae308895455a3e496b5eca2cd143

Scores

CVSS v3 5.5

EPSS 0.0001

EPSS Percentile 2.3%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Details

CWE

CWE-617

Status published

Products (12)

Linux/Linux < 6.18

Linux/Linux 35e4a69b2003f20a69e7d19ae96ab1eef1aa8e8d - 3025ca5daa9d682b629c0c958b538e41deeb559d

Linux/Linux 35e4a69b2003f20a69e7d19ae96ab1eef1aa8e8d - a8d51efb5929ae308895455a3e496b5eca2cd143

Linux/Linux 35e4a69b2003f20a69e7d19ae96ab1eef1aa8e8d - f19d1323aa3dd7ead469aef47d9085f8939565d9

Linux/Linux 4ddf7293928cb619077724b7d828734da8181e6c

Linux/Linux 6.18

Linux/Linux 6.18.21 - 6.18.*

Linux/Linux 6.19.11 - 6.19.*

Linux/Linux 7.0

linux/linux_kernel 6.18

... and 2 more

Published Apr 24, 2026

Tracked Since Apr 24, 2026