CVE-2026-31768 - Vulnerability Details

In the Linux kernel, the following vulnerability has been resolved:

iio: adc: ti-adc161s626: use DMA-safe memory for spi_read()

Add a DMA-safe buffer and use it for spi_read() instead of a stack
memory. All SPI buffers must be DMA-safe.

Since we only need up to 3 bytes, we just use a u8[] instead of __be16
and __be32 and change the conversion functions appropriately.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

No EPSS score available.

Key SSVC decision points have not yet been added.

Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).

Vendor Product Default status Versions

Linux

unaffected

Version	Status	Constraints
`4d671b71beefbfc145b971a11e0c3cabde94b673`	affected	< b3bb8faeca1a2ef7be95ee8a512b639f9ffce947
`4d671b71beefbfc145b971a11e0c3cabde94b673`	affected	< fa64aab25aba47296aa8d12bb4c88ec3fecb2054
`4d671b71beefbfc145b971a11e0c3cabde94b673`	affected	< 67b3a91bdc48220bfb67155ab528121b9c822782
`4d671b71beefbfc145b971a11e0c3cabde94b673`	affected	< 014c6d27878d3883f7bb065610768fd021de1a96
`4d671b71beefbfc145b971a11e0c3cabde94b673`	affected	< d2d031b0786ea66ab0577c9d2d71435068d32199
`4d671b71beefbfc145b971a11e0c3cabde94b673`	affected	< 768461517a28d80fe81ea4d5d03a90cd184ea6ad

Linux

affected

Version	Status	Constraints
`4.9`	affected	—
`0`	unaffected	< 4.9
`6.1.168`	unaffected	≤ 6.1.*
`6.6.134`	unaffected	≤ 6.6.*
`6.12.81`	unaffected	≤ 6.12.*
`6.18.22`	unaffected	≤ 6.18.*
`6.19.12`	unaffected	≤ 6.19.*
`7.0`	unaffected	≤ *

No data.

Project Subscriptions

Vendors	Products
Linux Subscribe	Linux Kernel Subscribe

Advisories

No advisories yet.

Fixes

Solution

No solution given by the vendor.

Workaround

No workaround given by the vendor.

References

Link	Providers
https://git.kernel.org/stable/c/014c6d27878d3883f7bb065610768fd021de1a96
https://git.kernel.org/stable/c/67b3a91bdc48220bfb67155ab528121b9c822782
https://git.kernel.org/stable/c/768461517a28d80fe81ea4d5d03a90cd184ea6ad
https://git.kernel.org/stable/c/b3bb8faeca1a2ef7be95ee8a512b639f9ffce947
https://git.kernel.org/stable/c/d2d031b0786ea66ab0577c9d2d71435068d32199
https://git.kernel.org/stable/c/fa64aab25aba47296aa8d12bb4c88ec3fecb2054

History

Fri, 01 May 2026 14:45:00 +0000

Type	Values Removed	Values Added
Description		In the Linux kernel, the following vulnerability has been resolved: iio: adc: ti-adc161s626: use DMA-safe memory for spi_read() Add a DMA-safe buffer and use it for spi_read() instead of a stack memory. All SPI buffers must be DMA-safe. Since we only need up to 3 bytes, we just use a u8[] instead of __be16 and __be32 and change the conversion functions appropriately.
Title		iio: adc: ti-adc161s626: use DMA-safe memory for spi_read()
First Time appeared		Linux Linux linux Kernel
CPEs		cpe:2.3:o:linux:linux_kernel::::::::
Vendors & Products		Linux Linux linux Kernel
References		https://git.kernel.org/stable/c/014c6d27878d3883f7bb065610768fd021de1a96 https://git.kernel.org/stable/c/67b3a91bdc48220bfb67155ab528121b9c822782 https://git.kernel.org/stable/c/768461517a28d80fe81ea4d5d03a90cd184ea6ad https://git.kernel.org/stable/c/b3bb8faeca1a2ef7be95ee8a512b639f9ffce947 https://git.kernel.org/stable/c/d2d031b0786ea66ab0577c9d2d71435068d32199 https://git.kernel.org/stable/c/fa64aab25aba47296aa8d12bb4c88ec3fecb2054

Projects

Sign in to view the affected projects.

MITRE

Status: PUBLISHED

Assigner: Linux

Published: 2026-05-01T14:14:57.971Z

Updated: 2026-05-01T14:14:57.971Z

Reserved: 2026-03-09T15:48:24.140Z

Link: CVE-2026-31768

Vulnrichment

No data.

NVD

Status : Awaiting Analysis

Published: 2026-05-01T15:16:39.977

Modified: 2026-05-01T15:24:14.893

Link: CVE-2026-31768

Redhat

No data.

OpenCVE Enrichment

No data.

Weaknesses

No weakness.

Project Subscriptions

Projects

JSON object

JSON object

JSON object

JSON object

JSON object