Skip to main content

Linux Kernel EUVDEUVD-2026-24923

| CVE-2026-31529 MEDIUM
Memory Leak (CWE-401)
2026-04-22 416baaa9-dc9f-4396-8d5f-8c081fb06d67 GHSA-cwwq-5gff-9x59
5.5
CVSS 3.1 · NVD
Share

Severity by source

NVD PRIMARY
5.5 MEDIUM
AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
SUSE
MEDIUM
qualitative

Primary rating from NVD.

CVSS VectorNVD

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Attack Vector
Local
Attack Complexity
Low
Privileges Required
Low
User Interaction
None
Scope
Unchanged
Confidentiality
None
Integrity
None
Availability
High

Lifecycle Timeline

7
Analysis Generated
Apr 28, 2026 - 18:07 vuln.today
CVSS changed
Apr 28, 2026 - 18:07 NVD
5.5 (MEDIUM)
Patch released
Apr 28, 2026 - 17:57 nvd
Patch available
Patch available
Apr 22, 2026 - 16:33 EUVD
EUVD ID Assigned
Apr 22, 2026 - 14:22 euvd
EUVD-2026-24923
Analysis Generated
Apr 22, 2026 - 14:22 vuln.today
CVE Published
Apr 22, 2026 - 14:16 nvd
MEDIUM 5.5

DescriptionCVE.org

In the Linux kernel, the following vulnerability has been resolved:

cxl/region: Fix leakage in __construct_region()

Failing the first sysfs_update_group() needs to explicitly kfree the resource as it is too early for cxl_region_iomem_release() to do so.

AnalysisAI

Memory leak in Linux kernel CXL region initialization allows local privileged attackers to cause denial of service through resource exhaustion. The vulnerability exists in the __construct_region() function where failed sysfs_update_group() calls fail to properly free allocated resources, resulting in cumulative memory exhaustion when region construction is repeatedly attempted and fails. CVSS 5.5 reflects local attack vector with low complexity and high availability impact; EPSS 0.02% indicates minimal real-world exploitation probability despite the vulnerability's severity classification.

Technical ContextAI

The CXL (Compute Express Link) subsystem in the Linux kernel manages memory regions through device drivers. The __construct_region() function initializes CXL regions via sysfs attributes. The vulnerability stems from CWE-401 (Missing Release of Memory after Effective Lifetime), where the function allocates memory for region configuration but fails to release it when sysfs_update_group() returns an error during early initialization stages. Normal cleanup via cxl_region_iomem_release() is not invoked in these error paths because the resource lifecycle tracking has not yet been established. This is a resource management defect specific to error handling in the CXL subsystem initialization code.

RemediationAI

Vendors should apply the upstream patch available at commit f1b4741adf08b0063291ec1b0dfa9c3d55644933 or 77b310bb7b5ff8c017524df83292e0242ba89791 to resolve the memory leak. Users running Linux 6.19 should upgrade to version 6.19.11 or later; users on Linux 7.0 releases should upgrade once the final stable release incorporating the fix is available. The patch explicitly adds kfree() calls in error paths of __construct_region() that previously omitted resource cleanup when sysfs_update_group() fails early. Systems that cannot immediately patch should reduce exposure by restricting local access to privileged accounts and disabling CXL region initialization if not actively required for workloads. No workarounds exist for the underlying leak itself; mitigation relies on either patching or reducing the frequency of failed region construction attempts through careful configuration management.

Vendor StatusVendor

SUSE

Severity: Medium
Product Status
SUSE Linux Enterprise Desktop 15 SP7 Fixed
SUSE Linux Enterprise Desktop 15 SP7 Fixed
SUSE Linux Enterprise High Availability Extension 15 SP7 Fixed
SUSE Linux Enterprise High Availability Extension 15 SP7 Fixed
SUSE Linux Enterprise High Performance Computing 15 SP7 Fixed

Share

EUVD-2026-24923 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy