CVE-2026-31594
Published: Apr 24, 2026
Modified: Jun 1, 2026
Description
In the Linux kernel, the following vulnerability has been resolved: PCI: endpoint: pci-epf-vntb: Remove duplicate resource teardown epf_ntb_epc_destroy() duplicates the teardown that the caller is supposed to perform later. This leads to an oops when .allow_link fails or when .drop_link is performed. The following is an example oops of the former case: Unable to handle kernel paging request at virtual address dead000000000108 [...] [dead000000000108] address between user and kernel address ranges Internal error: Oops: 0000000096000044 [#1] SMP [...] Call trace: pci_epc_remove_epf+0x78/0xe0 (P) pci_primary_epc_epf_link+0x88/0xa8 configfs_symlink+0x1f4/0x5a0 vfs_symlink+0x134/0x1d8 do_symlinkat+0x88/0x138 __arm64_sys_symlinkat+0x74/0xe0 [...] Remove the helper, and drop pci_epc_put(). EPC device refcounting is tied to the configfs EPC group lifetime, and pci_epc_put() in the .drop_link path is sufficient.
| Vendor | Product | Versions |
|---|---|---|
Linux | Linux | affected e2b6ef72b7aea9d7d480d2df499bcd1c93247abb - < 305a0674bc552bfcc3231e23fb91cf4f62aec168affected e35f56bb03304abc92c928b641af41ca372966bb - < b261027a1a235d8925e332363f23135a0eff2b35affected e35f56bb03304abc92c928b641af41ca372966bb - < e238ab12556b00f3b4d8b870b32ba1e4f4d4ebc2affected e35f56bb03304abc92c928b641af41ca372966bb - < 73bf218de28d039126dc64281d2b47dd3c46a0a3affected e35f56bb03304abc92c928b641af41ca372966bb - < cec9ead73ab154a7953f6ab8dd5127e0d6bbf95a+4 more versions |
Linux | Linux | affected 6.0unaffected 0 - < 6.0unaffected 5.15.209 - <= 5.15.*unaffected 6.1.175 - <= 6.1.*unaffected 6.6.136 - <= 6.6.*+5 more versions |
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now