Bug 2464501 (CVE-2026-31741)
| Summary: | CVE-2026-31741 kernel: counter: rz-mtu3-cnt: prevent counter from being toggled multiple times | ||
|---|---|---|---|
| Product: | [Other] Security Response | Reporter: | OSIDB Bzimport <bzimport> |
| Component: | vulnerability | Assignee: | Product Security <prodsec-ir-bot> |
| Status: | NEW --- | QA Contact: | |
| Severity: | unspecified | Docs Contact: | |
| Priority: | unspecified | ||
| Version: | unspecified | CC: | rhel-process-autobot, watson-tool-maintainers |
| Target Milestone: | --- | Keywords: | Security |
| Target Release: | --- | ||
| Hardware: | All | ||
| OS: | Linux | ||
| Whiteboard: | |||
| Fixed In Version: | Doc Type: | --- | |
| Doc Text: |
A flaw was found in the Linux kernel's `rz-mtu3-cnt` counter module. A local user can exploit this by repeatedly writing '0' to the sysfs enable file, which causes the runtime Power Management (PM) usage count to underflow. This can lead to attempts to access hardware registers with their clocks off, potentially causing system instability or a denial of service (DoS). Additionally, repeated writes of '1' can cause the usage count to increment indefinitely, requiring an equal number of '0' writes to reset it.
|
Story Points: | --- |
| Clone Of: | Environment: | ||
| Last Closed: | Type: | --- | |
| Regression: | --- | Mount Type: | --- |
| Documentation: | --- | CRM: | |
| Verified Versions: | Category: | --- | |
| oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
| Cloudforms Team: | --- | Target Upstream Version: | |
| Embargoed: | |||
|
Description
OSIDB Bzimport
2026-05-01 15:10:17 UTC
|