CVE-2026-31441 (GCVE-0-2026-31441)
Vulnerability from cvelistv5
Published
2026-04-22 13:53
Modified
2026-04-22 13:53
Severity ?
Summary
In the Linux kernel, the following vulnerability has been resolved: dmaengine: idxd: Fix memory leak when a wq is reset idxd_wq_disable_cleanup() which is called from the reset path for a workqueue, sets the wq type to NONE, which for other parts of the driver mean that the wq is empty (all its resources were released). Only set the wq type to NONE after its resources are released.
References
Impacted products
Vendor Product Version
Linux Linux Version: da32b28c95a79e399e18c03f8178f41aec9c66e4
Version: da32b28c95a79e399e18c03f8178f41aec9c66e4
Version: da32b28c95a79e399e18c03f8178f41aec9c66e4
Version: da32b28c95a79e399e18c03f8178f41aec9c66e4
Version: da32b28c95a79e399e18c03f8178f41aec9c66e4
Version: da32b28c95a79e399e18c03f8178f41aec9c66e4
Version: 2a2df2bd10de44c3804661ed15157817c12d6291
 Create a notification for this product.
Show details on NVD website

To clipboard 

{
  "containers": {
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "drivers/dma/idxd/device.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "a16098a2f0c11ee5e04e23aa7478ca1fcfb0f658",
              "status": "affected",
              "version": "da32b28c95a79e399e18c03f8178f41aec9c66e4",
              "versionType": "git"
            },
            {
              "lessThan": "54d77cc0c40ca2f894859dc7b3c52997574f1a2a",
              "status": "affected",
              "version": "da32b28c95a79e399e18c03f8178f41aec9c66e4",
              "versionType": "git"
            },
            {
              "lessThan": "39c1504e0e76bcfb93991fd94288a83e05d13b51",
              "status": "affected",
              "version": "da32b28c95a79e399e18c03f8178f41aec9c66e4",
              "versionType": "git"
            },
            {
              "lessThan": "a9e7815d38629bcf59d3005001f1f315424a58de",
              "status": "affected",
              "version": "da32b28c95a79e399e18c03f8178f41aec9c66e4",
              "versionType": "git"
            },
            {
              "lessThan": "0c3d3ac57e3c52b570b8c695903306bff07e04c8",
              "status": "affected",
              "version": "da32b28c95a79e399e18c03f8178f41aec9c66e4",
              "versionType": "git"
            },
            {
              "lessThan": "d9cfb5193a047a92a4d3c0e91ea4cc87c8f7c478",
              "status": "affected",
              "version": "da32b28c95a79e399e18c03f8178f41aec9c66e4",
              "versionType": "git"
            },
            {
              "status": "affected",
              "version": "2a2df2bd10de44c3804661ed15157817c12d6291",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "drivers/dma/idxd/device.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "5.8"
            },
            {
              "lessThan": "5.8",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.1.*",
              "status": "unaffected",
              "version": "6.1.168",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.6.*",
              "status": "unaffected",
              "version": "6.6.131",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.12.*",
              "status": "unaffected",
              "version": "6.12.80",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.18.*",
              "status": "unaffected",
              "version": "6.18.21",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.19.*",
              "status": "unaffected",
              "version": "6.19.11",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "7.0",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.1.168",
                  "versionStartIncluding": "5.8",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.6.131",
                  "versionStartIncluding": "5.8",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.12.80",
                  "versionStartIncluding": "5.8",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.18.21",
                  "versionStartIncluding": "5.8",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.19.11",
                  "versionStartIncluding": "5.8",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "7.0",
                  "versionStartIncluding": "5.8",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionStartIncluding": "5.7.10",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\ndmaengine: idxd: Fix memory leak when a wq is reset\n\nidxd_wq_disable_cleanup() which is called from the reset path for a\nworkqueue, sets the wq type to NONE, which for other parts of the\ndriver mean that the wq is empty (all its resources were released).\n\nOnly set the wq type to NONE after its resources are released."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2026-04-22T13:53:39.055Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/a16098a2f0c11ee5e04e23aa7478ca1fcfb0f658"
        },
        {
          "url": "https://git.kernel.org/stable/c/54d77cc0c40ca2f894859dc7b3c52997574f1a2a"
        },
        {
          "url": "https://git.kernel.org/stable/c/39c1504e0e76bcfb93991fd94288a83e05d13b51"
        },
        {
          "url": "https://git.kernel.org/stable/c/a9e7815d38629bcf59d3005001f1f315424a58de"
        },
        {
          "url": "https://git.kernel.org/stable/c/0c3d3ac57e3c52b570b8c695903306bff07e04c8"
        },
        {
          "url": "https://git.kernel.org/stable/c/d9cfb5193a047a92a4d3c0e91ea4cc87c8f7c478"
        }
      ],
      "title": "dmaengine: idxd: Fix memory leak when a wq is reset",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2026-31441",
    "datePublished": "2026-04-22T13:53:39.055Z",
    "dateReserved": "2026-03-09T15:48:24.090Z",
    "dateUpdated": "2026-04-22T13:53:39.055Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2"
}


Log in or create an account to share your comment.




Tags
Taxonomy of the tags.




Sightings

Author Source Type Date

Nomenclature

  • Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
  • Confirmed: The vulnerability is confirmed from an analyst perspective.
  • Published Proof of Concept: A public proof of concept is available for this vulnerability.
  • Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
  • Patched: This vulnerability was successfully patched by the user reporting the sighting.
  • Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
  • Not confirmed: The user expresses doubt about the veracity of the vulnerability.
  • Not patched: This vulnerability was not successfully patched by the user reporting the sighting.