CVE-2026-31391

EUVD-2026-18764
In the Linux kernel, the following vulnerability has been resolved:

crypto: atmel-sha204a - Fix OOM ->tfm_count leak

If memory allocation fails, decrement ->tfm_count to avoid blocking
future reads.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
UNKNOWN
---
Awaiting analysis
This vulnerability is currently awaiting analysis.
Base Score
CVSS 3.x
EPSS Score
Percentile: 10%
Debian logo
Debian Releases
Debian Product
Codename
linux
bookworm
6.1.170-3
fixed
bookworm (security)
6.1.172-1
fixed
bullseye
vulnerable
bullseye (security)
vulnerable
forky
7.0.7-1
fixed
sid
7.0.7-1
fixed
trixie
6.12.86-1
fixed
trixie (security)
6.12.88-1
fixed
linux-6.1
bullseye (security)
6.1.172-1~deb11u1
fixed
References
https://git.kernel.org/stable/c/1ab70c260cf16f931a728b2cb63fff5f38c814d8
https://git.kernel.org/stable/c/2bfc83cee05f8b9604502df27d94e8e2b4a3dbf1
https://git.kernel.org/stable/c/66ee9c1c3575b5d6afc340faca00fd40ed5b7ad9
https://git.kernel.org/stable/c/6f502049a96b368ea6646c49d9520d6f69a101fa
https://git.kernel.org/stable/c/c2d0c45dbb9eb272385ae919b17eef5a5318d3f8
https://git.kernel.org/stable/c/d240b079a37e90af03fd7dfec94930eb6c83936e
https://git.kernel.org/stable/c/fd262dc6d758232511127372eba866b7600739ba