CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2026-31769

In the Linux kernel, the following vulnerability has been resolved: gpib: fix use-after-free in IO ioctl handlers The IBRD, IBWRT, IBCMD, and IBWAIT ioctl handlers use a gpib_descriptor pointer after board->big_gpib_mutex has been released. A concurrent IBCLOSEDEV ioctl can free the descriptor via close_dev_ioctl() during this window, causing a use-after-free. The IO handlers (read_ioctl, write_ioctl, command_ioctl) explicitly release big_gpib_mutex before calling their handler. wait_ioctl() is called with big_gpib_mutex held, but ibwait() releases it internally when wait_mask is non-zero. In all four cases, the descriptor pointer obtained from handle_to_descriptor() becomes unprotected. Fix this by introducing a kernel-only descriptor_busy reference count in struct gpib_descriptor. Each handler atomically increments descriptor_busy under file_priv->descriptors_mutex before releasing the lock, and decrements it when done. close_dev_ioctl() checks descriptor_busy under the same lock and rejects the close with -EBUSY if the count is non-zero. A reference count rather than a simple flag is necessary because multiple handlers can operate on the same descriptor concurrently (e.g. IBRD and IBWAIT on the same handle from different threads). A separate counter is needed because io_in_progress can be cleared from unprivileged userspace via the IBWAIT ioctl (through general_ibstatus() with set_mask containing CMPL), which would allow an attacker to bypass a check based solely on io_in_progress. The new descriptor_busy counter is only modified by the kernel IO paths. The lock ordering is consistent (big_gpib_mutex -> descriptors_mutex) and the handlers only hold descriptors_mutex briefly during the lookup, so there is no deadlock risk and no impact on IO throughput.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 3.3%

CVSS Severity

CVSS v3 Score 7.8

References

Products affected by CVE-2026-31769

Linux » Linux Kernel » Version: 6.13

cpe:2.3:o:linux:linux_kernel:6.13
Linux » Linux Kernel » Version: 6.13.1

cpe:2.3:o:linux:linux_kernel:6.13.1
Linux » Linux Kernel » Version: 6.13.10

cpe:2.3:o:linux:linux_kernel:6.13.10
Linux » Linux Kernel » Version: 6.13.11

cpe:2.3:o:linux:linux_kernel:6.13.11
Linux » Linux Kernel » Version: 6.13.12

cpe:2.3:o:linux:linux_kernel:6.13.12
Linux » Linux Kernel » Version: 6.13.2

cpe:2.3:o:linux:linux_kernel:6.13.2
Linux » Linux Kernel » Version: 6.13.3

cpe:2.3:o:linux:linux_kernel:6.13.3
Linux » Linux Kernel » Version: 6.13.4

cpe:2.3:o:linux:linux_kernel:6.13.4
Linux » Linux Kernel » Version: 6.13.5

cpe:2.3:o:linux:linux_kernel:6.13.5
Linux » Linux Kernel » Version: 6.13.6

cpe:2.3:o:linux:linux_kernel:6.13.6
Linux » Linux Kernel » Version: 6.13.7

cpe:2.3:o:linux:linux_kernel:6.13.7
Linux » Linux Kernel » Version: 6.13.8

cpe:2.3:o:linux:linux_kernel:6.13.8
Linux » Linux Kernel » Version: 6.13.9

cpe:2.3:o:linux:linux_kernel:6.13.9
Linux » Linux Kernel » Version: 6.14

cpe:2.3:o:linux:linux_kernel:6.14
Linux » Linux Kernel » Version: 6.14.1

cpe:2.3:o:linux:linux_kernel:6.14.1
Linux » Linux Kernel » Version: 6.14.10

cpe:2.3:o:linux:linux_kernel:6.14.10
Linux » Linux Kernel » Version: 6.14.11

cpe:2.3:o:linux:linux_kernel:6.14.11
Linux » Linux Kernel » Version: 6.14.2

cpe:2.3:o:linux:linux_kernel:6.14.2
Linux » Linux Kernel » Version: 6.14.3

cpe:2.3:o:linux:linux_kernel:6.14.3
Linux » Linux Kernel » Version: 6.14.4

cpe:2.3:o:linux:linux_kernel:6.14.4
Linux » Linux Kernel » Version: 6.14.5

cpe:2.3:o:linux:linux_kernel:6.14.5
Linux » Linux Kernel » Version: 6.14.6

cpe:2.3:o:linux:linux_kernel:6.14.6
Linux » Linux Kernel » Version: 6.14.7

cpe:2.3:o:linux:linux_kernel:6.14.7
Linux » Linux Kernel » Version: 6.14.8

cpe:2.3:o:linux:linux_kernel:6.14.8
Linux » Linux Kernel » Version: 6.14.9

cpe:2.3:o:linux:linux_kernel:6.14.9
Linux » Linux Kernel » Version: 6.15

cpe:2.3:o:linux:linux_kernel:6.15
Linux » Linux Kernel » Version: 6.15.1

cpe:2.3:o:linux:linux_kernel:6.15.1
Linux » Linux Kernel » Version: 6.15.10

cpe:2.3:o:linux:linux_kernel:6.15.10
Linux » Linux Kernel » Version: 6.15.11

cpe:2.3:o:linux:linux_kernel:6.15.11
Linux » Linux Kernel » Version: 6.15.2

cpe:2.3:o:linux:linux_kernel:6.15.2
Linux » Linux Kernel » Version: 6.15.3

cpe:2.3:o:linux:linux_kernel:6.15.3
Linux » Linux Kernel » Version: 6.15.4

cpe:2.3:o:linux:linux_kernel:6.15.4
Linux » Linux Kernel » Version: 6.15.5

cpe:2.3:o:linux:linux_kernel:6.15.5
Linux » Linux Kernel » Version: 6.15.6

cpe:2.3:o:linux:linux_kernel:6.15.6
Linux » Linux Kernel » Version: 6.15.7

cpe:2.3:o:linux:linux_kernel:6.15.7
Linux » Linux Kernel » Version: 6.15.8

cpe:2.3:o:linux:linux_kernel:6.15.8
Linux » Linux Kernel » Version: 6.15.9

cpe:2.3:o:linux:linux_kernel:6.15.9
Linux » Linux Kernel » Version: 6.16

cpe:2.3:o:linux:linux_kernel:6.16
Linux » Linux Kernel » Version: 6.16.1

cpe:2.3:o:linux:linux_kernel:6.16.1
Linux » Linux Kernel » Version: 6.16.10

cpe:2.3:o:linux:linux_kernel:6.16.10
Linux » Linux Kernel » Version: 6.16.11

cpe:2.3:o:linux:linux_kernel:6.16.11
Linux » Linux Kernel » Version: 6.16.12

cpe:2.3:o:linux:linux_kernel:6.16.12
Linux » Linux Kernel » Version: 6.16.2

cpe:2.3:o:linux:linux_kernel:6.16.2
Linux » Linux Kernel » Version: 6.16.3

cpe:2.3:o:linux:linux_kernel:6.16.3
Linux » Linux Kernel » Version: 6.16.4

cpe:2.3:o:linux:linux_kernel:6.16.4
Linux » Linux Kernel » Version: 6.16.5

cpe:2.3:o:linux:linux_kernel:6.16.5
Linux » Linux Kernel » Version: 6.16.6

cpe:2.3:o:linux:linux_kernel:6.16.6
Linux » Linux Kernel » Version: 6.16.7

cpe:2.3:o:linux:linux_kernel:6.16.7
Linux » Linux Kernel » Version: 6.16.8

cpe:2.3:o:linux:linux_kernel:6.16.8
Linux » Linux Kernel » Version: 6.16.9

cpe:2.3:o:linux:linux_kernel:6.16.9
Linux » Linux Kernel » Version: 6.17

cpe:2.3:o:linux:linux_kernel:6.17
Linux » Linux Kernel » Version: 6.17.1

cpe:2.3:o:linux:linux_kernel:6.17.1
Linux » Linux Kernel » Version: 6.17.10

cpe:2.3:o:linux:linux_kernel:6.17.10
Linux » Linux Kernel » Version: 6.17.11

cpe:2.3:o:linux:linux_kernel:6.17.11
Linux » Linux Kernel » Version: 6.17.12

cpe:2.3:o:linux:linux_kernel:6.17.12
Linux » Linux Kernel » Version: 6.17.13

cpe:2.3:o:linux:linux_kernel:6.17.13
Linux » Linux Kernel » Version: 6.17.2

cpe:2.3:o:linux:linux_kernel:6.17.2
Linux » Linux Kernel » Version: 6.17.3

cpe:2.3:o:linux:linux_kernel:6.17.3
Linux » Linux Kernel » Version: 6.17.4

cpe:2.3:o:linux:linux_kernel:6.17.4
Linux » Linux Kernel » Version: 6.17.5

cpe:2.3:o:linux:linux_kernel:6.17.5
Linux » Linux Kernel » Version: 6.17.6

cpe:2.3:o:linux:linux_kernel:6.17.6
Linux » Linux Kernel » Version: 6.17.7

cpe:2.3:o:linux:linux_kernel:6.17.7
Linux » Linux Kernel » Version: 6.17.8

cpe:2.3:o:linux:linux_kernel:6.17.8
Linux » Linux Kernel » Version: 6.17.9

cpe:2.3:o:linux:linux_kernel:6.17.9
Linux » Linux Kernel » Version: 6.18

cpe:2.3:o:linux:linux_kernel:6.18
Linux » Linux Kernel » Version: 6.18.1

cpe:2.3:o:linux:linux_kernel:6.18.1
Linux » Linux Kernel » Version: 6.18.10

cpe:2.3:o:linux:linux_kernel:6.18.10
Linux » Linux Kernel » Version: 6.18.11

cpe:2.3:o:linux:linux_kernel:6.18.11
Linux » Linux Kernel » Version: 6.18.13

cpe:2.3:o:linux:linux_kernel:6.18.13
Linux » Linux Kernel » Version: 6.18.14

cpe:2.3:o:linux:linux_kernel:6.18.14
Linux » Linux Kernel » Version: 6.18.16

cpe:2.3:o:linux:linux_kernel:6.18.16
Linux » Linux Kernel » Version: 6.18.17

cpe:2.3:o:linux:linux_kernel:6.18.17
Linux » Linux Kernel » Version: 6.18.18

cpe:2.3:o:linux:linux_kernel:6.18.18
Linux » Linux Kernel » Version: 6.18.19

cpe:2.3:o:linux:linux_kernel:6.18.19
Linux » Linux Kernel » Version: 6.18.2

cpe:2.3:o:linux:linux_kernel:6.18.2
Linux » Linux Kernel » Version: 6.18.20

cpe:2.3:o:linux:linux_kernel:6.18.20
Linux » Linux Kernel » Version: 6.18.21

cpe:2.3:o:linux:linux_kernel:6.18.21
Linux » Linux Kernel » Version: 6.18.3

cpe:2.3:o:linux:linux_kernel:6.18.3
Linux » Linux Kernel » Version: 6.18.4

cpe:2.3:o:linux:linux_kernel:6.18.4
Linux » Linux Kernel » Version: 6.18.5

cpe:2.3:o:linux:linux_kernel:6.18.5
Linux » Linux Kernel » Version: 6.18.6

cpe:2.3:o:linux:linux_kernel:6.18.6
Linux » Linux Kernel » Version: 6.18.7

cpe:2.3:o:linux:linux_kernel:6.18.7
Linux » Linux Kernel » Version: 6.18.8

cpe:2.3:o:linux:linux_kernel:6.18.8
Linux » Linux Kernel » Version: 6.18.9

cpe:2.3:o:linux:linux_kernel:6.18.9
Linux » Linux Kernel » Version: 6.19

cpe:2.3:o:linux:linux_kernel:6.19
Linux » Linux Kernel » Version: 6.19.1

cpe:2.3:o:linux:linux_kernel:6.19.1
Linux » Linux Kernel » Version: 6.19.10

cpe:2.3:o:linux:linux_kernel:6.19.10
Linux » Linux Kernel » Version: 6.19.11

cpe:2.3:o:linux:linux_kernel:6.19.11
Linux » Linux Kernel » Version: 6.19.3

cpe:2.3:o:linux:linux_kernel:6.19.3
Linux » Linux Kernel » Version: 6.19.4

cpe:2.3:o:linux:linux_kernel:6.19.4
Linux » Linux Kernel » Version: 6.19.6

cpe:2.3:o:linux:linux_kernel:6.19.6
Linux » Linux Kernel » Version: 6.19.7

cpe:2.3:o:linux:linux_kernel:6.19.7
Linux » Linux Kernel » Version: 6.19.8

cpe:2.3:o:linux:linux_kernel:6.19.8
Linux » Linux Kernel » Version: 6.19.9

cpe:2.3:o:linux:linux_kernel:6.19.9
Linux » Linux Kernel » Version: 7.0

cpe:2.3:o:linux:linux_kernel:7.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2026-31769

Products

Pricing

Contact Us