CVE-2026-31743

HIGH

nvmem: zynqmp_nvmem: Fix buffer size in DMA and memcpy

Title source: cna

Description

In the Linux kernel, the following vulnerability has been resolved: nvmem: zynqmp_nvmem: Fix buffer size in DMA and memcpy Buffer size used in dma allocation and memcpy is wrong. It can lead to undersized DMA buffer access and possible memory corruption. use correct buffer size in dma_alloc_coherent and memcpy.

References (4)

Core 4

Core References

https://git.kernel.org/stable/c/2f6e5b9964d0a63a5ba84fca2642876afb70a662

https://git.kernel.org/stable/c/784ed4abded1ca4b525fa4cade8b02f8c5d2a087

https://git.kernel.org/stable/c/6c01e7f11f5e5f22285d19510a9643e2506e13c3

https://git.kernel.org/stable/c/f9b88613ff402aa6fe8fd020573cb95867ae947e

Scores

CVSS v3 7.8

EPSS 0.0002

EPSS Percentile 3.8%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Details

CWE

CWE-787

Status published

Products (12)

Linux/Linux < 6.9

Linux/Linux 6.12.81 - 6.12.*

Linux/Linux 6.18.22 - 6.18.*

Linux/Linux 6.19.12 - 6.19.*

Linux/Linux 6.9

Linux/Linux 7.0

Linux/Linux 737c0c8d07b5f671c0a33cec95965fcb2d2ea893 - 2f6e5b9964d0a63a5ba84fca2642876afb70a662

Linux/Linux 737c0c8d07b5f671c0a33cec95965fcb2d2ea893 - 6c01e7f11f5e5f22285d19510a9643e2506e13c3

Linux/Linux 737c0c8d07b5f671c0a33cec95965fcb2d2ea893 - 784ed4abded1ca4b525fa4cade8b02f8c5d2a087

Linux/Linux 737c0c8d07b5f671c0a33cec95965fcb2d2ea893 - f9b88613ff402aa6fe8fd020573cb95867ae947e

... and 2 more

Published May 01, 2026

Tracked Since May 01, 2026