CVE-2026-31461

MEDIUM EPSS 2.2%
Published Apr 22, 20262mo ago · Modified Jun 17, 20261w ago
5.5 CVSS 3.1
Medium
Find Similar
Published Apr 22, 2026 2mo ago
Last Modified Jun 17, 2026 1w ago

Description

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Fix drm_edid leak in amdgpu_dm [WHAT] When a sink is connected, aconnector->drm_edid was overwritten without freeing the previous allocation, causing a memory leak on resume. [HOW] Free the previous drm_edid before updating it. (cherry picked from commit 52024a94e7111366141cfc5d888b2ef011f879e5)

CVSS Details

Base Score
5.5
Exploitability
1.8
Impact
3.6
Vector string
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Attack Vector Local
Attack Complexity Low
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality None
Integrity None
Availability High

Threat Intelligence

EPSS Exploit Probability
2.2% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Weaknesses 1

CWE-401

Affected Products 7

VendorProductVersionRange
linuxlinux_kernel*≥6.13  –  <6.18.21
linuxlinux_kernel*≥6.19  –  <6.19.11
linuxlinux_kernel7.0any
linuxlinux_kernel7.0any
linuxlinux_kernel7.0any
linuxlinux_kernel7.0any
linuxlinux_kernel7.0any

References 3

  • git.kernel.org https://git.kernel.org/stable/c/37c2caa167b0b8aca4f74c32404c5288b876a2a3
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/52db857e94b9be4e6315586602b0257d1d2b165a
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/eb95595194e4755b62360aa821f40a79b0953105
    Patch

Remediation

  • git.kernel.org https://git.kernel.org/stable/c/37c2caa167b0b8aca4f74c32404c5288b876a2a3
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/52db857e94b9be4e6315586602b0257d1d2b165a
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/eb95595194e4755b62360aa821f40a79b0953105
    Patch