CVE-2026-31426

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A use-after-free issue exists in the ACPI EC component. When the ec install handlers() function returns a -EPROBE DEFER error on reduced-hardware platforms, the acpi ec setup() function fails to perform necessary cleanup. This leads the acpi ec add() function to free the struct acpi ec for non-boot instances, leaving a dangling handler context. Subsequent AML evaluations accessing an EC OpRegion field trigger the acpi ec space handler() function using the freed pointer. This can be exercised via unprivileged sysfs reads that cause AML to access EC OpRegions such as battery, thermal, or backlight.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.