What is CVE-2026-31584?

CVE-2026-31584 is a high-severity vulnerability in Linux. CVSS score: 7.8/10. Published 2026-04-24.

How severe is CVE-2026-31584?

High severity. CVSS v3 base score is 7.8 out of 10.

Vulnerability in Linux

CVE-2026-31584

In the Linux kernel, the following vulnerability has been resolved: media: mediatek: vcodec: fix use-after-free in encoder release path The fops_vcodec_release() function frees the context structure (ctx) without first cancelling any pen…

EPSS: 0.000 (3.0th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 7.8 (High). Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H.

Affected products

Linux — versions 0934d37596151edce115c6d0843a9ad7d5e5d232, 6.6, 0

References

git.kernel.org/stable/c/9a9bdaf9dc42ccca50e53f82165292f74a365c11
git.kernel.org/stable/c/a8a55913552aed45108525d1851c65e1db0cc25b
git.kernel.org/stable/c/f99353cd0e9f58bf17889049137b8d65fb44ebf1
git.kernel.org/stable/c/93d9a58961a9e09306857e999b3ee76aa4be67f0
git.kernel.org/stable/c/f1692337c6fa26e04f89b22a4d84bf5b7ada50d1
git.kernel.org/stable/c/76e35091ffc722ba39b303e48bc5d08abb59dd56

Frequently asked questions

What is CVE-2026-31584?: CVE-2026-31584 is a high-severity vulnerability in Linux. CVSS score: 7.8/10. Published 2026-04-24.
How severe is CVE-2026-31584?: High severity. CVSS v3 base score is 7.8 out of 10.