Use-After-Free Vulnerability in Linux Kernel Affecting SPI Drivers
CVE-2026-31487

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 22 April 2026

What is CVE-2026-31487?

A vulnerability exists in the Linux kernel's handling of SPI drivers. When a driver is probed via the __driver_attach() function, the bus' match() callback gets invoked without the requisite device lock, which allows for access to the driver_override field without proper synchronization. This situation can trigger a Use-After-Free (UAF) condition. The resolution involves utilizing the driver-core driver_override framework, ensuring that internal locking mechanisms are properly managed. It should be noted that the default behavior of SPI differs from other bus types, as it will output an empty string rather than a direct null representation when the driver_override pointer is null.

Affected Version(s)

Linux 5039563e7c25eccd7fec1de6706011009d1c5665

References

https://git.kernel.org/stable/c/eedf220442d13b6d97294e5b0...

https://git.kernel.org/stable/c/c73a58661a760373d08a6883a...

https://git.kernel.org/stable/c/e0ae367a2de06c49aa1de6ec9...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Apr 22, 2026
Vulnerability Reserved
Mar 9, 2026

CVE-2026-31487 Data

JSON