PT-2026-36416 · Linux · Linux Kernel
Published
2026-05-01
·
Updated
2026-05-11
·
CVE-2026-31781
CVSS v3.1
5.5
Medium
| Vector | AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H |
Name of the Vulnerable Software and Affected Versions
Linux kernel (affected versions not specified)
Description
The drm compat ioctl path accepts a user-controlled pointer and dereferences it into a table of function pointers. This pattern is characteristic of Spectre problems, which are side-channel attacks that exploit speculative execution in processors to leak sensitive data. The issue occurs during the processing of the
drm compat ioctl path.Recommendations
Apply the fix by calling the
array index nospec() function on the index to the function pointer list.Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Linux Kernel