Buffer Overflow and Endianness Issues in Linux Kernel's TH1520 AON Firmware Driver
CVE-2026-31690

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 27 April 2026

What is CVE-2026-31690?

A vulnerability in the Linux kernel's TH1520 AON firmware driver introduces potential buffer overflow issues stemming from unsafe pointer arithmetic. This could lead to unauthorized access or manipulation of the memory space. Additionally, the use of non-standard endian macros has been replaced with standard conversion macros, enhancing both the portability and maintainability of the driver. Testing has shown successful GPU power-up sequences, ensuring that the functionality remains intact while addressing these critical flaws.

Affected Version(s)

Linux e4b3cbd840e565484d0ad8d260d27c057466ed17

Linux e4b3cbd840e565484d0ad8d260d27c057466ed17 < 88c4bd90725557796c15878b7cb70066e9e6b5ab

References

https://git.kernel.org/stable/c/fbdb43f6bb2a15ed382d6eb0e...

https://git.kernel.org/stable/c/bd15a5deb5a7251dc1a0cf918...

https://git.kernel.org/stable/c/88c4bd90725557796c15878b7...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Apr 27, 2026
Vulnerability Reserved
Mar 9, 2026

CVE-2026-31690 Data

JSON