CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2026-31645

In the Linux kernel, the following vulnerability has been resolved: net: lan966x: fix page pool leak in error paths lan966x_fdma_rx_alloc() creates a page pool but does not destroy it if the subsequent fdma_alloc_coherent() call fails, leaking the pool. Similarly, lan966x_fdma_init() frees the coherent DMA memory when lan966x_fdma_tx_alloc() fails but does not destroy the page pool that was successfully created by lan966x_fdma_rx_alloc(), leaking it. Add the missing page_pool_destroy() calls in both error paths.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 2.3%

CVSS Severity

CVSS v3 Score 5.5

References

https://git.kernel.org/stable/c/076344a6ad9d1308faaed1402fdcfdda68b604ab
https://git.kernel.org/stable/c/22e1ee9f22b5c3bb702bb6d4167d770002a85b2b
https://git.kernel.org/stable/c/4941e234cfd67ac911fb259642b453f9f76aac41
https://git.kernel.org/stable/c/73e940c4249dc5ec6422d1fae535d192fb125955

Products affected by CVE-2026-31645

Linux » Linux Kernel » Version: 6.2

cpe:2.3:o:linux:linux_kernel:6.2
Linux » Linux Kernel » Version: 7.0

cpe:2.3:o:linux:linux_kernel:7.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2026-31645

Products

Pricing

Contact Us