Memory Management Vulnerability in Linux Kernel
CVE-2026-31529

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 22 April 2026

What is CVE-2026-31529?

A memory management vulnerability has been identified in the Linux kernel related to the cxl/region component. Specifically, the issue arises during the sysfs_update_group() process, where a failure to execute correctly can lead to resource leakage. The fix involves ensuring that any resources are explicitly freed if the first sysfs_update_group() fails. This prevents premature release of resources by the cxl_region_iomem_release(), thereby enhancing system stability and security.

Affected Version(s)

Linux d6602e25819dea2c239972e98e09ba5db4aebd22

Linux d6602e25819dea2c239972e98e09ba5db4aebd22 < 77b310bb7b5ff8c017524df83292e0242ba89791

Linux 6.19

References

https://git.kernel.org/stable/c/f1b4741adf08b0063291ec1b0...

https://git.kernel.org/stable/c/77b310bb7b5ff8c017524df83...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Apr 22, 2026
Vulnerability Reserved
Mar 9, 2026

CVE-2026-31529 Data

JSON