CVE-2026-31661

wifi: brcmsmac: Fix dma_free_coherent() size

Published: 4/24/2026 Last updated: 4/24/2026 Reserved: 3/9/2026

In the Linux kernel, the following vulnerability has been resolved: wifi: brcmsmac: Fix dma_free_coherent() size dma_alloc_consistent() may change the size to align it. The new size is saved in alloced. Change the free size to match the allocation size.

CNA assigner: Linux (416baaa9-dc9f-4396-8d5f-8c081fb06d67) Requested by: n/a

Opam packages affected (29)

albatross cdrom conf-bpftool conf-libbpf conf-linux-libc-dev core core_unix hvsock mirage-block-unix mm ocaml-probes ortools_solvers orun rawlink rawlink-eio rawlink-lwt restricted shell solo5 solo5-bindings-hvt solo5-bindings-spt solo5-cross-aarch64 solo5-kernel-ukvm tracy-client tuntap uring vhd-format vhd-format-lwt xapi-stdext-unix

Products affected (2)

Product	Vendor	Version
Linux	Linux	n/a
Linux	Linux	n/a

References (8)

https://git.kernel.org/stable/c/f449676bab54fea1440775c8c915dadb323fe015
https://git.kernel.org/stable/c/3c204a0fd079fa7a867151a47d830ad1c2db5177
https://git.kernel.org/stable/c/0f87777b74bcce29b966ec42d9aa8f9edd9b1667
https://git.kernel.org/stable/c/4bf41c2731a0549e21f66180ff780b1e036639ab
https://git.kernel.org/stable/c/77263f053963dea9f3962505ac0c768853d7dc59
https://git.kernel.org/stable/c/b27fa888e4a426a3bcf6f6ab24701d888d9bf5aa
https://git.kernel.org/stable/c/01f1330d3d1bee07e0c42d40cc48b7be8b6dad84
https://git.kernel.org/stable/c/12cd7632757a54ce586e36040210b1a738a0fc53