NVD

CVE-2026-31486 Detail

Modified After Enrichment

This CVE record has been updated after NVD enrichment efforts were completed. Enrichment data supplied by the NVD may require amendment due to these changes.

Description

In the Linux kernel, the following vulnerability has been resolved: hwmon: (pmbus/core) Protect regulator operations with mutex The regulator operations pmbus_regulator_get_voltage(), pmbus_regulator_set_voltage(), and pmbus_regulator_list_voltage() access PMBus registers and shared data but were not protected by the update_lock mutex. This could lead to race conditions. However, adding mutex protection directly to these functions causes a deadlock because pmbus_regulator_notify() (which calls regulator_notifier_call_chain()) is often called with the mutex already held (e.g., from pmbus_fault_handler()). If a regulator callback then calls one of the now-protected voltage functions, it will attempt to acquire the same mutex. Rework pmbus_regulator_notify() to utilize a worker function to send notifications outside of the mutex protection. Events are stored as atomics in a per-page bitmask and processed by the worker. Initialize the worker and its associated data during regulator registration, and ensure it is cancelled on device removal using devm_add_action_or_reset(). While at it, remove the unnecessary include of linux/of.h.

Metrics

NVD enrichment efforts reference publicly available information to associate vector strings. CVSS information contributed by other sources is also displayed.

CVSS 4.0 Severity and Vector Strings:

NIST: NVD

N/A

NVD assessment not yet provided.

CVSS 3.x Severity and Vector Strings:

NIST: NVD

Base Score: N/A

NVD assessment not yet provided.

Nist CVSS score does not match with CNA score

CNA: kernel.org

Base Score: 7.1 HIGH

Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H

CVSS 2.0 Severity and Vector Strings:

National Institute of Standards and Technology

NIST: NVD

Base Score: N/A

NVD assessment not yet provided.

References to Advisories, Solutions, and Tools

By selecting these links, you will be leaving NIST webspace. We have provided these links to other web sites because they may have information that would be of interest to you. No inferences should be drawn on account of other sites being referenced, or not, from this page. There may be other web sites that are more appropriate for your purpose. NIST does not necessarily endorse the views expressed, or concur with the facts presented on these sites. Further, NIST does not endorse any commercial products that may be mentioned on these sites. Please address comments about this page to [email protected].

URL	Source(s)	Tag(s)
https://git.kernel.org/stable/c/2c77ae315f3ce9d2c8e1609be74c9358c1fe4e07	kernel.org	Patch
https://git.kernel.org/stable/c/4e9d723d9f198b86f6882a84c501ba1f39e8d055	kernel.org	Patch
https://git.kernel.org/stable/c/754bd2b4a084b90b5e7b630e1f423061a9b9b761	kernel.org	Patch
https://git.kernel.org/stable/c/acf04e2863132f6d9222f71f3a76fb9782cbe061	kernel.org
https://git.kernel.org/stable/c/b26849cffaa7c43355b82e9bef3725e786973a1a	kernel.org

Weakness Enumeration

CWE-ID	CWE Name	Source
CWE-667	Improper Locking	NIST

Known Affected Software Configurations Switch to CPE 2.2

CPEs loading, please wait.

Denotes Vulnerable Software
Are we missing a CPE here? Please let us know.

Change History

6 change records found show changes

CVE Modified by kernel.org 6/19/2026 9:16:26 AM

Action

Type

Old Value

New Value

Added

Reference

https://git.kernel.org/stable/c/b26849cffaa7c43355b82e9bef3725e786973a1a

Changed

Affected

[{"vendor":"Linux","product":"Linux","defaultStatus":"unaffected","programFiles":["drivers/hwmon/pmbus/pmbus_core.c"],"repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","versions":[{"version":"ddbb4db4ced1ba784fcd3500179a7291b6c5d7b7","lessThan":"acf04e2863132f6d9222f71f3a76fb9782cbe061","versionType":"git","status":"affected"},{"version":"ddbb4db4ced1ba784fcd3500179a7291b6c5d7b7","lessThan":"4e9d723d9f198b86f6882a84c501ba1f39e8d055","versionType":"git","status":"affected"},{"version":"ddbb4db4ced1ba784fcd3500179a7291b6c5d7b7","lessThan":"2c77ae315f3ce9d2c8e1609be74c9358c1fe4e07","versionType":"git","status":"affected"},{"version":"ddbb4db4ced1ba784fcd3500179a7291b6c5d7b7","lessThan":"754bd2b4a084b90b5e7b630e1f423061a9b9b761","versionType":"git","status":"affected"}]},{"vendor":"Linux","product":"Linux","defaultStatus":"affected","programFiles":["drivers/hwmon/pmbus/pmbus_core.c"],"repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","versions":[{"version":"3.19","status":"affected"},{"version":"0","lessThan":"3.19","versionType":"semver","status":"unaffected"},{"version":"6.12.92","lessThanOrEqual":"6.12.*","versionType":"semver","status":"unaffected"},{"version":"6.18.21","lessThanOrEqual":"6.18.*","versionType":"semver","status":"unaffected"},{"version":"6.19.11","lessThanOrEqual":"6.19.*","versionType":"semver","status":"unaffected"},{"version":"7.0","lessThanOrEqual":"*","versionType":"original_commit_for_fix","status":"unaffected"}]}]

[{"vendor":"Linux","product":"Linux","defaultStatus":"unaffected","programFiles":["drivers/hwmon/pmbus/pmbus_core.c"],"repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","versions":[{"version":"ddbb4db4ced1ba784fcd3500179a7291b6c5d7b7","lessThan":"b26849cffaa7c43355b82e9bef3725e786973a1a","versionType":"git","status":"affected"},{"version":"ddbb4db4ced1ba784fcd3500179a7291b6c5d7b7","lessThan":"acf04e2863132f6d9222f71f3a76fb9782cbe061","versionType":"git","status":"affected"},{"version":"ddbb4db4ced1ba784fcd3500179a7291b6c5d7b7","lessThan":"4e9d723d9f198b86f6882a84c501ba1f39e8d055","versionType":"git","status":"affected"},{"version":"ddbb4db4ced1ba784fcd3500179a7291b6c5d7b7","lessThan":"2c77ae315f3ce9d2c8e1609be74c9358c1fe4e07","versionType":"git","status":"affected"},{"version":"ddbb4db4ced1ba784fcd3500179a7291b6c5d7b7","lessThan":"754bd2b4a084b90b5e7b630e1f423061a9b9b761","versionType":"git","status":"affected"}]},{"vendor":"Linux","product":"Linux","defaultStatus":"affected","programFiles":["drivers/hwmon/pmbus/pmbus_core.c"],"repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","versions":[{"version":"3.19","status":"affected"},{"version":"0","lessThan":"3.19","versionType":"semver","status":"unaffected"},{"version":"6.6.143","lessThanOrEqual":"6.6.*","versionType":"semver","status":"unaffected"},{"version":"6.12.92","lessThanOrEqual":"6.12.*","versionType":"semver","status":"unaffected"},{"version":"6.18.21","lessThanOrEqual":"6.18.*","versionType":"semver","status":"unaffected"},{"version":"6.19.11","lessThanOrEqual":"6.19.*","versionType":"semver","status":"unaffected"},{"version":"7.0","lessThanOrEqual":"*","versionType":"original_commit_for_fix","status":"unaffected"}]}]

CVE Modified by kernel.org 6/17/2026 6:33:50 AM

Action

Type

Old Value

New Value

Added

Affected

[{"vendor":"Linux","product":"Linux","defaultStatus":"unaffected","programFiles":["drivers/hwmon/pmbus/pmbus_core.c"],"repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","versions":[{"version":"ddbb4db4ced1ba784fcd3500179a7291b6c5d7b7","lessThan":"acf04e2863132f6d9222f71f3a76fb9782cbe061","versionType":"git","status":"affected"},{"version":"ddbb4db4ced1ba784fcd3500179a7291b6c5d7b7","lessThan":"4e9d723d9f198b86f6882a84c501ba1f39e8d055","versionType":"git","status":"affected"},{"version":"ddbb4db4ced1ba784fcd3500179a7291b6c5d7b7","lessThan":"2c77ae315f3ce9d2c8e1609be74c9358c1fe4e07","versionType":"git","status":"affected"},{"version":"ddbb4db4ced1ba784fcd3500179a7291b6c5d7b7","lessThan":"754bd2b4a084b90b5e7b630e1f423061a9b9b761","versionType":"git","status":"affected"}]},{"vendor":"Linux","product":"Linux","defaultStatus":"affected","programFiles":["drivers/hwmon/pmbus/pmbus_core.c"],"repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","versions":[{"version":"3.19","status":"affected"},{"version":"0","lessThan":"3.19","versionType":"semver","status":"unaffected"},{"version":"6.12.92","lessThanOrEqual":"6.12.*","versionType":"semver","status":"unaffected"},{"version":"6.18.21","lessThanOrEqual":"6.18.*","versionType":"semver","status":"unaffected"},{"version":"6.19.11","lessThanOrEqual":"6.19.*","versionType":"semver","status":"unaffected"},{"version":"7.0","lessThanOrEqual":"*","versionType":"original_commit_for_fix","status":"unaffected"}]}]

Initial Analysis by NIST 4/28/2026 9:06:48 AM

Action	Type	New Value
Added	CWE	CWE-667
Added	CPE Configuration	OR cpe:2.3:o:linux:linux_kernel:3.19:-::::::* cpe:2.3:o:linux:linux_kernel:7.0:rc1::::::* cpe:2.3:o:linux:linux_kernel:7.0:rc2::::::* cpe:2.3:o:linux:linux_kernel:7.0:rc3::::::* cpe:2.3:o:linux:linux_kernel:7.0:rc4::::::* cpe:2.3:o:linux:linux_kernel:7.0:rc5::::::* cpe:2.3:o:linux:linux_kernel:7.0:rc6::::::* cpe:2.3:o:linux:linux_kernel:7.0:rc7::::::* cpe:2.3:o:linux:linux_kernel::::::::* versions from (including) 6.19 up to (excluding) 6.19.11 cpe:2.3:o:linux:linux_kernel::::::::* versions from (including) 3.19.1 up to (excluding) 6.18.21
Added	Reference Type	kernel.org: https://git.kernel.org/stable/c/2c77ae315f3ce9d2c8e1609be74c9358c1fe4e07 Types: Patch
Added	Reference Type	kernel.org: https://git.kernel.org/stable/c/4e9d723d9f198b86f6882a84c501ba1f39e8d055 Types: Patch
Added	Reference Type	kernel.org: https://git.kernel.org/stable/c/754bd2b4a084b90b5e7b630e1f423061a9b9b761 Types: Patch

New CVE Received from kernel.org 4/22/2026 10:16:46 AM

Action	Type	New Value
Added	Description	In the Linux kernel, the following vulnerability has been resolved: hwmon: (pmbus/core) Protect regulator operations with mutex The regulator operations pmbus_regulator_get_voltage(), pmbus_regulator_set_voltage(), and pmbus_regulator_list_voltage() access PMBus registers and shared data but were not protected by the update_lock mutex. This could lead to race conditions. However, adding mutex protection directly to these functions causes a deadlock because pmbus_regulator_notify() (which calls regulator_notifier_call_chain()) is often called with the mutex already held (e.g., from pmbus_fault_handler()). If a regulator callback then calls one of the now-protected voltage functions, it will attempt to acquire the same mutex. Rework pmbus_regulator_notify() to utilize a worker function to send notifications outside of the mutex protection. Events are stored as atomics in a per-page bitmask and processed by the worker. Initialize the worker and its associated data during regulator registration, and ensure it is cancelled on device removal using devm_add_action_or_reset(). While at it, remove the unnecessary include of linux/of.h.
Added	Reference	https://git.kernel.org/stable/c/2c77ae315f3ce9d2c8e1609be74c9358c1fe4e07
Added	Reference	https://git.kernel.org/stable/c/4e9d723d9f198b86f6882a84c501ba1f39e8d055
Added	Reference	https://git.kernel.org/stable/c/754bd2b4a084b90b5e7b630e1f423061a9b9b761

Quick Info

CVE Dictionary Entry:
CVE-2026-31486
NVD Published Date:
04/22/2026
NVD Last Modified:
06/19/2026
Source:
kernel.org

You are viewing this page in an unauthorized frame window.

Information Technology Laboratory

National Vulnerability Database

National Vulnerability Database

CVE-2026-31486 Detail

Description

Metrics

References to Advisories, Solutions, and Tools

Weakness Enumeration

Known Affected Software Configurations Switch to CPE 2.2

CPEs loading, please wait.

Change History

CVE Modified by kernel.org 6/19/2026 9:16:26 AM

CVE Modified by kernel.org 6/17/2026 6:33:50 AM

CVE Modified by kernel.org 6/01/2026 1:16:47 PM

Initial Analysis by NIST 4/28/2026 9:06:48 AM

CVE Modified by kernel.org 4/27/2026 11:16:09 AM

New CVE Received from kernel.org 4/22/2026 10:16:46 AM

Quick Info