CVE-2026-31759
Published: May 1, 2026
Modified: May 11, 2026
Description
In the Linux kernel, the following vulnerability has been resolved: usb: ulpi: fix double free in ulpi_register_interface() error path When device_register() fails, ulpi_register() calls put_device() on ulpi->dev. The device release callback ulpi_dev_release() drops the OF node reference and frees ulpi, but the current error path in ulpi_register_interface() then calls kfree(ulpi) again, causing a double free. Let put_device() handle the cleanup through ulpi_dev_release() and avoid freeing ulpi again in ulpi_register_interface().
| Vendor | Product | Versions |
|---|---|---|
Linux | Linux | affected 289fcff4bcdb1dcc0ce8788b7ea0f58a9e4a495f - < 2f70ba9dae13a190673cc3f9b4aad52179738f60affected 289fcff4bcdb1dcc0ce8788b7ea0f58a9e4a495f - < ee248e6e941e4f2e634df2bd43e5f1ef810ab6dfaffected 289fcff4bcdb1dcc0ce8788b7ea0f58a9e4a495f - < 272a9b26c336a295e4e209157fed809706c1b1f7affected 289fcff4bcdb1dcc0ce8788b7ea0f58a9e4a495f - < aaeae6533d77e6ed4def85baec01e2815ebbef61affected 289fcff4bcdb1dcc0ce8788b7ea0f58a9e4a495f - < 8763f8317bb389aded32a32b08f6751cfff657d2+3 more versions |
Linux | Linux | affected 4.2unaffected 0 - < 4.2unaffected 5.10.253 - <= 5.10.*unaffected 5.15.203 - <= 5.15.*unaffected 6.1.168 - <= 6.1.*+5 more versions |
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now