CVE-2026-31743 - Vulnerability Details - OpenCVE

In the Linux kernel, the following vulnerability has been resolved: nvmem: zynqmp_nvmem: Fix buffer size in DMA and memcpy Buffer size used in dma allocation and memcpy is wrong. It can lead to undersized DMA buffer access and possible memory corruption. use correct buffer size in dma_alloc_coherent and memcpy.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

No EPSS score available.

Key SSVC decision points have not yet been added.

Vendors	Products
Linux	Linux Kernel

No data.

No data.

No data.

References

Link	Providers
https://git.kernel.org/stable/c/2f6e5b9964d0a63a5ba84fca2642876afb70a662
https://git.kernel.org/stable/c/6c01e7f11f5e5f22285d19510a9643e2506e13c3
https://git.kernel.org/stable/c/784ed4abded1ca4b525fa4cade8b02f8c5d2a087
https://git.kernel.org/stable/c/f9b88613ff402aa6fe8fd020573cb95867ae947e

History

Fri, 01 May 2026 14:45:00 +0000

Type	Values Removed	Values Added
Description		In the Linux kernel, the following vulnerability has been resolved: nvmem: zynqmp_nvmem: Fix buffer size in DMA and memcpy Buffer size used in dma allocation and memcpy is wrong. It can lead to undersized DMA buffer access and possible memory corruption. use correct buffer size in dma_alloc_coherent and memcpy.
Title		nvmem: zynqmp_nvmem: Fix buffer size in DMA and memcpy
First Time appeared		Linux Linux linux Kernel
CPEs		cpe:2.3:o:linux:linux_kernel::::::::
Vendors & Products		Linux Linux linux Kernel
References		https://git.kernel.org/stable/c/2f6e5b9964d0a63a5ba84fca2642876afb70a662 https://git.kernel.org/stable/c/6c01e7f11f5e5f22285d19510a9643e2506e13c3 https://git.kernel.org/stable/c/784ed4abded1ca4b525fa4cade8b02f8c5d2a087 https://git.kernel.org/stable/c/f9b88613ff402aa6fe8fd020573cb95867ae947e

MITRE

Status: PUBLISHED

Assigner: Linux

Published: 2026-05-01T14:14:38.154Z

Updated: 2026-05-01T14:14:38.154Z

Reserved: 2026-03-09T15:48:24.138Z

Link: CVE-2026-31743

Vulnrichment

No data.

NVD

Status : Awaiting Analysis

Published: 2026-05-01T15:16:37.047

Modified: 2026-05-01T15:24:14.893

Link: CVE-2026-31743

Redhat

No data.

OpenCVE Enrichment

No data.

{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2026-31743", "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "state": "PUBLISHED", "assignerShortName": "Linux", "dateReserved": "2026-03-09T15:48:24.138Z", "datePublished": "2026-05-01T14:14:38.154Z", "dateUpdated": "2026-05-01T14:14:38.154Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "shortName": "Linux", "dateUpdated": "2026-05-01T14:14:38.154Z"}, "descriptions": [{"lang": "en", "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nnvmem: zynqmp_nvmem: Fix buffer size in DMA and memcpy\n\nBuffer size used in dma allocation and memcpy is wrong.\nIt can lead to undersized DMA buffer access and possible\nmemory corruption. use correct buffer size in dma_alloc_coherent\nand memcpy."}], "affected": [{"product": "Linux", "vendor": "Linux", "defaultStatus": "unaffected", "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git", "programFiles": ["drivers/nvmem/zynqmp_nvmem.c"], "versions": [{"version": "737c0c8d07b5f671c0a33cec95965fcb2d2ea893", "lessThan": "2f6e5b9964d0a63a5ba84fca2642876afb70a662", "status": "affected", "versionType": "git"}, {"version": "737c0c8d07b5f671c0a33cec95965fcb2d2ea893", "lessThan": "784ed4abded1ca4b525fa4cade8b02f8c5d2a087", "status": "affected", "versionType": "git"}, {"version": "737c0c8d07b5f671c0a33cec95965fcb2d2ea893", "lessThan": "6c01e7f11f5e5f22285d19510a9643e2506e13c3", "status": "affected", "versionType": "git"}, {"version": "737c0c8d07b5f671c0a33cec95965fcb2d2ea893", "lessThan": "f9b88613ff402aa6fe8fd020573cb95867ae947e", "status": "affected", "versionType": "git"}]}, {"product": "Linux", "vendor": "Linux", "defaultStatus": "affected", "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git", "programFiles": ["drivers/nvmem/zynqmp_nvmem.c"], "versions": [{"version": "6.9", "status": "affected"}, {"version": "0", "lessThan": "6.9", "status": "unaffected", "versionType": "semver"}, {"version": "6.12.81", "lessThanOrEqual": "6.12.*", "status": "unaffected", "versionType": "semver"}, {"version": "6.18.22", "lessThanOrEqual": "6.18.*", "status": "unaffected", "versionType": "semver"}, {"version": "6.19.12", "lessThanOrEqual": "6.19.*", "status": "unaffected", "versionType": "semver"}, {"version": "7.0", "lessThanOrEqual": "*", "status": "unaffected", "versionType": "original_commit_for_fix"}]}], "cpeApplicability": [{"nodes": [{"operator": "OR", "negate": false, "cpeMatch": [{"vulnerable": true, "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "versionStartIncluding": "6.9", "versionEndExcluding": "6.12.81"}, {"vulnerable": true, "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "versionStartIncluding": "6.9", "versionEndExcluding": "6.18.22"}, {"vulnerable": true, "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "versionStartIncluding": "6.9", "versionEndExcluding": "6.19.12"}, {"vulnerable": true, "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "versionStartIncluding": "6.9", "versionEndExcluding": "7.0"}]}]}], "references": [{"url": "https://git.kernel.org/stable/c/2f6e5b9964d0a63a5ba84fca2642876afb70a662"}, {"url": "https://git.kernel.org/stable/c/784ed4abded1ca4b525fa4cade8b02f8c5d2a087"}, {"url": "https://git.kernel.org/stable/c/6c01e7f11f5e5f22285d19510a9643e2506e13c3"}, {"url": "https://git.kernel.org/stable/c/f9b88613ff402aa6fe8fd020573cb95867ae947e"}], "title": "nvmem: zynqmp_nvmem: Fix buffer size in DMA and memcpy", "x_generator": {"engine": "bippy-1.2.0"}}}}