CVE-2026-31442 PUBLISHED

dmaengine: idxd: Fix possible invalid memory access after FLR

Assigner: Linux
Reserved: 09.03.2026 Published: 22.04.2026 Updated: 22.04.2026

In the Linux kernel, the following vulnerability has been resolved:

dmaengine: idxd: Fix possible invalid memory access after FLR

In the case that the first Function Level Reset (FLR) concludes correctly, but in the second FLR the scratch area for the saved configuration cannot be allocated, it's possible for a invalid memory access to happen.

Always set the deallocated scratch area to NULL after FLR completes.

Product Status

Vendor	Linux
Product	Linux
Versions	Default: unaffected affected from 98d187a989036096feaa2fef1ec3b2240ecdeacf to 504c0e6751001ac46917c73e703f2b1b92cfc026 (excl.) affected from 98d187a989036096feaa2fef1ec3b2240ecdeacf to 867d0c801f21370d561420fa32f2ea1a7dc3a22d (excl.) affected from 98d187a989036096feaa2fef1ec3b2240ecdeacf to d6077df7b75d26e4edf98983836c05d00ebabd8d (excl.)

Vendor	Linux
Product	Linux
Versions	Default: affected Version 6.14 is affected unaffected from 0 to 6.14 (excl.) unaffected from 6.18.21 to 6.18.* (incl.) unaffected from 6.19.11 to 6.19.* (incl.) unaffected from 7.0 to * (incl.)

CVE-2026-31442 PUBLISHED

dmaengine: idxd: Fix possible invalid memory access after FLR

Product Status

References