CVE-2026-31661

MEDIUM

wifi: brcmsmac: Fix dma_free_coherent() size

Title source: cna

Description

In the Linux kernel, the following vulnerability has been resolved: wifi: brcmsmac: Fix dma_free_coherent() size dma_alloc_consistent() may change the size to align it. The new size is saved in alloced. Change the free size to match the allocation size.

References (8)

Core 8

Core References

https://git.kernel.org/stable/c/3c204a0fd079fa7a867151a47d830ad1c2db5177

https://git.kernel.org/stable/c/f449676bab54fea1440775c8c915dadb323fe015

https://git.kernel.org/stable/c/0f87777b74bcce29b966ec42d9aa8f9edd9b1667

https://git.kernel.org/stable/c/4bf41c2731a0549e21f66180ff780b1e036639ab

https://git.kernel.org/stable/c/77263f053963dea9f3962505ac0c768853d7dc59

https://git.kernel.org/stable/c/b27fa888e4a426a3bcf6f6ab24701d888d9bf5aa

https://git.kernel.org/stable/c/01f1330d3d1bee07e0c42d40cc48b7be8b6dad84

https://git.kernel.org/stable/c/12cd7632757a54ce586e36040210b1a738a0fc53

Scores

CVSS v3 5.5

EPSS 0.0001

EPSS Percentile 2.4%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Details

Status published

Products (21)

Linux/Linux < 3.2

Linux/Linux 3.2

Linux/Linux 5.10.253 - 5.10.*

Linux/Linux 5.15.203 - 5.15.*

Linux/Linux 5b435de0d786869c95d1962121af0d7df2542009 - 01f1330d3d1bee07e0c42d40cc48b7be8b6dad84

Linux/Linux 5b435de0d786869c95d1962121af0d7df2542009 - 0f87777b74bcce29b966ec42d9aa8f9edd9b1667

Linux/Linux 5b435de0d786869c95d1962121af0d7df2542009 - 12cd7632757a54ce586e36040210b1a738a0fc53

Linux/Linux 5b435de0d786869c95d1962121af0d7df2542009 - 3c204a0fd079fa7a867151a47d830ad1c2db5177

Linux/Linux 5b435de0d786869c95d1962121af0d7df2542009 - 4bf41c2731a0549e21f66180ff780b1e036639ab

Linux/Linux 5b435de0d786869c95d1962121af0d7df2542009 - 77263f053963dea9f3962505ac0c768853d7dc59

... and 11 more

Published Apr 24, 2026

Tracked Since Apr 24, 2026