spi: fix use-after-free on controller registration failure_CVE-2026-31389

7.8 / 10

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Description

In the Linux kernel, the following vulnerability has been resolved:

spi: fix use-after-free on controller registration failure

Make sure to deregister from driver core also in the unlikely event that
per-cpu statistics allocation fails during controller registration to
avoid use-after-free (of driver resources) and unclocked register
accesses.

Basic Information

ID CVE-2026-31389

Source Linux

Published Apr 3, 2026 at 15:15

Modified Apr 27, 2026 at 14:02

Affected Product

Vendor Linux

Product Linux

Version 6598b91b5ac32bc756d7c3000a31f775d4ead1c4

Affected Versions Linux Linux 6598b91b5ac32bc756d7c3000a31f775d4ead1c4
Linux Linux 6598b91b5ac32bc756d7c3000a31f775d4ead1c4
Linux Linux 6598b91b5ac32bc756d7c3000a31f775d4ead1c4
Linux Linux 6598b91b5ac32bc756d7c3000a31f775d4ead1c4
Linux Linux 6598b91b5ac32bc756d7c3000a31f775d4ead1c4
Linux Linux 6598b91b5ac32bc756d7c3000a31f775d4ead1c4
Linux Linux 6.0

References

{
    "lastseen": "",
    "description": "In the Linux kernel, the following vulnerability has been resolved:\n\nspi: fix use-after-free on controller registration failure\n\nMake sure to deregister from driver core also in the unlikely event that\nper-cpu statistics allocation fails during controller registration to\navoid use-after-free (of driver resources) and unclocked register\naccesses.",
    "published": "2026-04-03T15:15:55.068Z",
    "modified": "2026-04-27T14:02:41.755Z",
    "type": "cve",
    "title": "spi: fix use-after-free on controller registration failure",
    "source": "Linux",
    "references": "https://git.kernel.org/stable/c/0e23f50086da7d0b183dfeac26021acfcdee086b\nhttps://git.kernel.org/stable/c/6bbd385b30c7fb6c7ee0669e9ada91490938c051\nhttps://git.kernel.org/stable/c/afe27c1f43aa57530011f419be6ddf71306565d2\nhttps://git.kernel.org/stable/c/80f3e8cd2b4ad355b2ad2024cf423f6d183404f7\nhttps://git.kernel.org/stable/c/23b51bad2eb8787aa74324cfccefb258515ae5ba\nhttps://git.kernel.org/stable/c/8634e05b08ead636e926022f4a98416e13440df9",
    "id": "CVE-2026-31389",
    "bulletinFamily": "",
    "cwe": null,
    "cvelist": null,
    "sourceData": "Linux Linux 6598b91b5ac32bc756d7c3000a31f775d4ead1c4\nLinux Linux 6598b91b5ac32bc756d7c3000a31f775d4ead1c4\nLinux Linux 6598b91b5ac32bc756d7c3000a31f775d4ead1c4\nLinux Linux 6598b91b5ac32bc756d7c3000a31f775d4ead1c4\nLinux Linux 6598b91b5ac32bc756d7c3000a31f775d4ead1c4\nLinux Linux 6598b91b5ac32bc756d7c3000a31f775d4ead1c4\nLinux Linux 6.0",
    "sourceHref": "",
    "cvss": {
        "score": 7.8,
        "severity": "HIGH",
        "vector": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "Linux",
    "version": "6598b91b5ac32bc756d7c3000a31f775d4ead1c4",
    "vendor": "Linux",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}

Description

Basic Information

Affected Product

References

💭 Join the Security Discussion ❌ Cancel Reply