Vulnerability Description
In the Linux kernel, the following vulnerability has been resolved: nvme-pci: ensure we're polling a polled queue A user can change the polled queue count at run time. There's a brief window during a reset where a hipri task may try to poll that queue before the block layer has updated the queue maps, which would race with the now interrupt driven queue and may cause double completions.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Linux | Linux Kernel | >= 5.0, < 5.10.253 |
Related Weaknesses (CWE)
References
- https://git.kernel.org/stable/c/0685dd9cb855ab77fcf3577b4702ba1d6df1c98dPatch
- https://git.kernel.org/stable/c/166e31d7dbf6aa44829b98aa446bda5c9580f12aPatch
- https://git.kernel.org/stable/c/6f12734c4b619f923a4df0b1a46b8098b187d324Patch
- https://git.kernel.org/stable/c/965e2c943f065122f14282a88d70a8a92e12a4daPatch
- https://git.kernel.org/stable/c/acbc72dd1a09df53cafcf577259f4678be6afd6dPatch
- https://git.kernel.org/stable/c/b222680ba55e018426c4535067a008f1d81a5d21Patch
- https://git.kernel.org/stable/c/b96c7b25eb1b748f3e3b1832ebf028b0b223d7e3Patch
- https://git.kernel.org/stable/c/ba167d5982e2eb6ff9356d409eca592ce99555daPatch
FAQ
What is CVE-2026-31523?
CVE-2026-31523 is a vulnerability with a CVSS score of 4.7 (MEDIUM). In the Linux kernel, the following vulnerability has been resolved: nvme-pci: ensure we're polling a polled queue A user can change the polled queue count at run time. There's a brief window during ...
How severe is CVE-2026-31523?
CVE-2026-31523 has been rated MEDIUM with a CVSS base score of 4.7/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2026-31523?
Check the references section above for vendor advisories and patch information. Affected products include: Linux Linux Kernel.