Description

In the Linux kernel, the following vulnerability has been resolved: spi: fix use-after-free on controller registration failure Make sure to deregister from driver core also in the unlikely event that per-cpu statistics allocation fails during controller registration to avoid use-after-free (of driver resources) and unclocked register accesses.

INFO

Published Date :

2026-04-03T15:15:55.068Z

Last Modified :

2026-04-03T15:15:55.068Z

Source :

Linux
AFFECTED PRODUCTS

The following products are affected by CVE-2026-31389 vulnerability.

Vendors Products
Linux
  • Linux Kernel
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2026-31389.

URL Resource
https://git.kernel.org/stable/c/0e23f50086da7d0b183dfeac26021acfcdee086b cve-icon cve-icon
https://git.kernel.org/stable/c/23b51bad2eb8787aa74324cfccefb258515ae5ba cve-icon cve-icon
https://git.kernel.org/stable/c/6bbd385b30c7fb6c7ee0669e9ada91490938c051 cve-icon cve-icon
https://git.kernel.org/stable/c/80f3e8cd2b4ad355b2ad2024cf423f6d183404f7 cve-icon cve-icon
https://git.kernel.org/stable/c/8634e05b08ead636e926022f4a98416e13440df9 cve-icon cve-icon
https://git.kernel.org/stable/c/afe27c1f43aa57530011f419be6ddf71306565d2 cve-icon cve-icon
https://lore.kernel.org/linux-cve-announce/2026040324-CVE-2026-31389-036b@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2026-31389 cve-icon
https://www.cve.org/CVERecord?id=CVE-2026-31389 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact