CVE-2026-31399
Published: Apr 3, 2026
Modified: May 23, 2026
Description
In the Linux kernel, the following vulnerability has been resolved: nvdimm/bus: Fix potential use after free in asynchronous initialization Dingisoul with KASAN reports a use after free if device_add() fails in nd_async_device_register(). Commit b6eae0f61db2 ("libnvdimm: Hold reference on parent while scheduling async init") correctly added a reference on the parent device to be held until asynchronous initialization was complete. However, if device_add() results in an allocation failure the ref count of the device drops to 0 prior to the parent pointer being accessed. Thus resulting in use after free. The bug bot AI correctly identified the fix. Save a reference to the parent pointer to be used to drop the parent reference regardless of the outcome of device_add().
| Vendor | Product | Versions |
|---|---|---|
Linux | Linux | affected b6eae0f61db27748606cc00dafcfd1e2c032f0a5 - < 6fc36c2a925ceaba203eb13d75a8f0879a2c121baffected b6eae0f61db27748606cc00dafcfd1e2c032f0a5 - < a36cf138500e56f50db9f9a33222df6969b38326affected b6eae0f61db27748606cc00dafcfd1e2c032f0a5 - < 9a0fb16ba5b372465a3a1ecd761c6fa911a4ab4daffected b6eae0f61db27748606cc00dafcfd1e2c032f0a5 - < e48bf8f1d2b12c1c5ba1f609edbd4cde5dadc20eaffected b6eae0f61db27748606cc00dafcfd1e2c032f0a5 - < 2c638259ad750833fd46a0cf57672a618542d84c+13 more versions |
Linux | Linux | affected 4.20unaffected 0 - < 4.20unaffected 5.10.253 - <= 5.10.*unaffected 5.15.203 - <= 5.15.*unaffected 6.1.167 - <= 6.1.*+5 more versions |
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now