{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2026-31655", "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "state": "PUBLISHED", "assignerShortName": "Linux", "dateReserved": "2026-03-09T15:48:24.129Z", "datePublished": "2026-04-24T14:45:07.085Z", "dateUpdated": "2026-05-11T22:13:00.925Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "shortName": "Linux", "dateUpdated": "2026-05-11T22:13:00.925Z"}, "descriptions": [{"lang": "en", "value": "In the Linux kernel, the following vulnerability has been resolved:\n\npmdomain: imx8mp-blk-ctrl: Keep the NOC_HDCP clock enabled\n\nKeep the NOC_HDCP clock always enabled to fix the potential hang\ncaused by the NoC ADB400 port power down handshake."}], "affected": [{"product": "Linux", "vendor": "Linux", "defaultStatus": "unaffected", "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git", "programFiles": ["drivers/pmdomain/imx/imx8mp-blk-ctrl.c"], "versions": [{"version": "77b0ddb42add47748c661f714e6f4b116a6e8759", "lessThan": "80fd0de89805a3f92dc320f5ab5a18007c260374", "status": "affected", "versionType": "git"}, {"version": "77b0ddb42add47748c661f714e6f4b116a6e8759", "lessThan": "3086374e8bc7fd65f2cc62ef52351c6d662f1543", "status": "affected", "versionType": "git"}, {"version": "77b0ddb42add47748c661f714e6f4b116a6e8759", "lessThan": "e44919669f07b8f113ad49a248b44ca4f119bc94", "status": "affected", "versionType": "git"}, {"version": "77b0ddb42add47748c661f714e6f4b116a6e8759", "lessThan": "d1ef779d02b5df4e8bff4083b20bfea587b43c4b", "status": "affected", "versionType": "git"}, {"version": "77b0ddb42add47748c661f714e6f4b116a6e8759", "lessThan": "e91d5f94acf68618ea3ad9c92ac28614e791ae7d", "status": "affected", "versionType": "git"}]}, {"product": "Linux", "vendor": "Linux", "defaultStatus": "affected", "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git", "programFiles": ["drivers/pmdomain/imx/imx8mp-blk-ctrl.c"], "versions": [{"version": "6.1", "status": "affected"}, {"version": "0", "lessThan": "6.1", "status": "unaffected", "versionType": "semver"}, {"version": "6.6.135", "lessThanOrEqual": "6.6.*", "status": "unaffected", "versionType": "semver"}, {"version": "6.12.82", "lessThanOrEqual": "6.12.*", "status": "unaffected", "versionType": "semver"}, {"version": "6.18.23", "lessThanOrEqual": "6.18.*", "status": "unaffected", "versionType": "semver"}, {"version": "6.19.13", "lessThanOrEqual": "6.19.*", "status": "unaffected", "versionType": "semver"}, {"version": "7.0", "lessThanOrEqual": "*", "status": "unaffected", "versionType": "original_commit_for_fix"}]}], "cpeApplicability": [{"nodes": [{"operator": "OR", "negate": false, "cpeMatch": [{"vulnerable": true, "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "versionStartIncluding": "6.1", "versionEndExcluding": "6.6.135"}, {"vulnerable": true, "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "versionStartIncluding": "6.1", "versionEndExcluding": "6.12.82"}, {"vulnerable": true, "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "versionStartIncluding": "6.1", "versionEndExcluding": "6.18.23"}, {"vulnerable": true, "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "versionStartIncluding": "6.1", "versionEndExcluding": "6.19.13"}, {"vulnerable": true, "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "versionStartIncluding": "6.1", "versionEndExcluding": "7.0"}]}]}], "references": [{"url": "https://git.kernel.org/stable/c/80fd0de89805a3f92dc320f5ab5a18007c260374"}, {"url": "https://git.kernel.org/stable/c/3086374e8bc7fd65f2cc62ef52351c6d662f1543"}, {"url": "https://git.kernel.org/stable/c/e44919669f07b8f113ad49a248b44ca4f119bc94"}, {"url": "https://git.kernel.org/stable/c/d1ef779d02b5df4e8bff4083b20bfea587b43c4b"}, {"url": "https://git.kernel.org/stable/c/e91d5f94acf68618ea3ad9c92ac28614e791ae7d"}], "title": "pmdomain: imx8mp-blk-ctrl: Keep the NOC_HDCP clock enabled", "x_generator": {"engine": "bippy-1.2.0"}}}}

{}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "matchCriteriaId": "981AB7F8-2AED-47D4-86EA-06AE40304DA5", "versionEndExcluding": "6.6.135", "versionStartIncluding": "6.1.1", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "matchCriteriaId": "02904CAE-71D2-45B3-9EC3-F6A9D18B6307", "versionEndExcluding": "6.12.82", "versionStartIncluding": "6.7", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "matchCriteriaId": "E9E09FDD-9EE3-4A56-92E2-2B30AFD0072F", "versionEndExcluding": "6.18.23", "versionStartIncluding": "6.13", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "matchCriteriaId": "1490EF9B-9080-481C-8D22-1306AAE664E4", "versionEndExcluding": "6.19.13", "versionStartIncluding": "6.19", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:6.1:-:*:*:*:*:*:*", "matchCriteriaId": "DE093B34-F4CD-4052-8122-730D6537A91A", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:7.0:rc1:*:*:*:*:*:*", "matchCriteriaId": "F253B622-8837-4245-BCE5-A7BF8FC76A16", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:7.0:rc2:*:*:*:*:*:*", "matchCriteriaId": "4AE85AD8-4641-4E7C-A2F4-305E2CD9EE64", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:7.0:rc3:*:*:*:*:*:*", "matchCriteriaId": "F666C8D8-6538-46D4-B318-87610DE64C34", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:7.0:rc4:*:*:*:*:*:*", "matchCriteriaId": "02259FDA-961B-47BC-AE7F-93D7EC6E90C2", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:7.0:rc5:*:*:*:*:*:*", "matchCriteriaId": "58A9FEFF-C040-420D-8F0A-BFDAAA1DF258", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:7.0:rc6:*:*:*:*:*:*", "matchCriteriaId": "1D2315C0-D46F-4F85-9754-F9E5E11374A6", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:7.0:rc7:*:*:*:*:*:*", "matchCriteriaId": "512EE3A8-A590-4501-9A94-5D4B268D6138", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "In the Linux kernel, the following vulnerability has been resolved:\n\npmdomain: imx8mp-blk-ctrl: Keep the NOC_HDCP clock enabled\n\nKeep the NOC_HDCP clock always enabled to fix the potential hang\ncaused by the NoC ADB400 port power down handshake."}], "id": "CVE-2026-31655", "lastModified": "2026-04-27T20:16:32.123", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 5.5, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", "version": "3.1"}, "exploitabilityScore": 1.8, "impactScore": 3.6, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2026-04-24T15:16:44.993", "references": [{"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "tags": ["Patch"], "url": "https://git.kernel.org/stable/c/3086374e8bc7fd65f2cc62ef52351c6d662f1543"}, {"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "tags": ["Patch"], "url": "https://git.kernel.org/stable/c/80fd0de89805a3f92dc320f5ab5a18007c260374"}, {"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "tags": ["Patch"], "url": "https://git.kernel.org/stable/c/d1ef779d02b5df4e8bff4083b20bfea587b43c4b"}, {"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "tags": ["Patch"], "url": "https://git.kernel.org/stable/c/e44919669f07b8f113ad49a248b44ca4f119bc94"}, {"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "tags": ["Patch"], "url": "https://git.kernel.org/stable/c/e91d5f94acf68618ea3ad9c92ac28614e791ae7d"}], "sourceIdentifier": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-noinfo"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{"bugzilla": {"description": "kernel: pmdomain: imx8mp-blk-ctrl: Keep the NOC_HDCP clock enabled", "id": "2461537", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2461537"}, "csaw": false, "cvss3": {"cvss3_base_score": "5.5", "cvss3_scoring_vector": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", "status": "draft"}, "cwe": "CWE-413", "details": ["A flaw was found in the Linux kernel. This vulnerability occurs because the NOC_HDCP clock, which is part of the `pmdomain: imx8mp-blk-ctrl` module, is not consistently enabled. This can disrupt the NoC ADB400 port power down handshake, potentially leading to a system hang. The primary impact is a Denial of Service (DoS), where the system becomes unresponsive."], "name": "CVE-2026-31655", "package_state": [{"cpe": "cpe:/o:redhat:enterprise_linux:10", "fix_state": "Fix deferred", "package_name": "kernel", "product_name": "Red Hat Enterprise Linux 10"}, {"cpe": "cpe:/o:redhat:enterprise_linux:6", "fix_state": "Not affected", "package_name": "kernel", "product_name": "Red Hat Enterprise Linux 6"}, {"cpe": "cpe:/o:redhat:enterprise_linux:7", "fix_state": "Not affected", "package_name": "kernel", "product_name": "Red Hat Enterprise Linux 7"}, {"cpe": "cpe:/o:redhat:enterprise_linux:7", "fix_state": "Not affected", "package_name": "kernel-rt", "product_name": "Red Hat Enterprise Linux 7"}, {"cpe": "cpe:/o:redhat:enterprise_linux:8", "fix_state": "Not affected", "package_name": "kernel", "product_name": "Red Hat Enterprise Linux 8"}, {"cpe": "cpe:/o:redhat:enterprise_linux:8", "fix_state": "Not affected", "package_name": "kernel-rt", "product_name": "Red Hat Enterprise Linux 8"}, {"cpe": "cpe:/o:redhat:enterprise_linux:9", "fix_state": "Fix deferred", "package_name": "kernel", "product_name": "Red Hat Enterprise Linux 9"}, {"cpe": "cpe:/o:redhat:enterprise_linux:9", "fix_state": "Fix deferred", "package_name": "kernel-rt", "product_name": "Red Hat Enterprise Linux 9"}], "public_date": "2026-04-24T00:00:00Z", "references": ["https://www.cve.org/CVERecord?id=CVE-2026-31655\nhttps://nvd.nist.gov/vuln/detail/CVE-2026-31655\nhttps://lore.kernel.org/linux-cve-announce/2026042401-CVE-2026-31655-17ab@gregkh/T"], "threat_severity": "Low"}

{"affected": [{"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "code_commit", "value": "[77b0ddb42add47748c661f714e6f4b116a6e8759,80fd0de89805a3f92dc320f5ab5a18007c260374)"}}, {"platform": null, "status": "affected", "versions": {"scheme": "code_commit", "value": "[77b0ddb42add47748c661f714e6f4b116a6e8759,3086374e8bc7fd65f2cc62ef52351c6d662f1543)"}}, {"platform": null, "status": "affected", "versions": {"scheme": "code_commit", "value": "[77b0ddb42add47748c661f714e6f4b116a6e8759,e44919669f07b8f113ad49a248b44ca4f119bc94)"}}, {"platform": null, "status": "affected", "versions": {"scheme": "code_commit", "value": "[77b0ddb42add47748c661f714e6f4b116a6e8759,d1ef779d02b5df4e8bff4083b20bfea587b43c4b)"}}, {"platform": null, "status": "affected", "versions": {"scheme": "code_commit", "value": "[77b0ddb42add47748c661f714e6f4b116a6e8759,e91d5f94acf68618ea3ad9c92ac28614e791ae7d)"}}], "enrichment": {"confidence": 99.0, "confidence_source": "inferred", "scores": [{"score": 99.0, "source": "inferred"}, {"score": 100.0, "source": "matching"}]}, "original": {"product": "Linux", "source": "cna", "vendor": "Linux"}, "product": "linux_kernel", "vendor": "linux"}, {"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "6.1"}}, {"platform": null, "status": "unaffected", "versions": {"scheme": "generic", "value": "[0,6.1)"}}, {"platform": null, "status": "unaffected", "versions": {"scheme": "semver", "value": "[6.6.135,7.0.0)"}}, {"platform": null, "status": "unaffected", "versions": {"scheme": "semver", "value": "[6.12.82,6.13.0)"}}, {"platform": null, "status": "unaffected", "versions": {"scheme": "semver", "value": "[6.18.23,6.19.0)"}}, {"platform": null, "status": "unaffected", "versions": {"scheme": "semver", "value": "[6.19.13,6.20.0)"}}, {"platform": null, "status": "unaffected", "versions": {"scheme": "generic", "value": "[7.0,*]"}}], "enrichment": {"confidence": 99.0, "confidence_source": "inferred", "scores": [{"score": 99.0, "source": "inferred"}, {"score": 100.0, "source": "matching"}]}, "original": {"product": "Linux", "source": "cna", "vendor": "Linux"}, "product": "linux_kernel", "vendor": "linux"}], "analysis": {"en": {"generated_at": "2026-04-28T23:35:56.443417+00:00", "value": {"mitigation_remediation": ["Upgrade the Linux kernel to a release that includes the fix for the NOC_HDCP clock retention, such as the latest 6.1.x or a 7.0 release candidate with the relevant commit.", "Until the kernel is updated, avoid performing NoC ADB400 port power\u2011down sequences during critical operations, or disable related power state changes to prevent the handshake from stalling.", "Monitor system logs for signs of NoC ADB400 port power\u2011down stalls and be prepared to reboot or recover if a kernel hang occurs."], "summary": {"action": "Immediate Patch", "impact": "Denial of Service through kernel hang"}, "threat_synthesis": {"affected_systems": "The vulnerability is present by default in Linux kernel 6.1 and all 7.0 release\u2011candidate builds (rc1 through rc7). It affects systems that load the imx8mp\u2011blk\u2011ctrl driver before the patch that keeps the NOC_HDCP clock enabled.\n", "description_and_impact": "The vulnerability arises from an incorrect handling of the NOC_HDCP clock during a NoC ADB400 port power\u2011down handshake, a weakness classified as CWE\u2011413: Incorrect Interface Usage. The driver may disable the clock, causing the handshake to stall and potentially leading to a kernel hang. A patch that forces the clock to remain enabled fixes the problem and prevents the denial of service.\n", "risk_and_exploitability": "The CVSS score of 5.5 indicates moderate severity. The EPSS score of less than 1% shows a very low likelihood of exploitation in the wild, and the vulnerability is not listed in the CISA KEV catalog. Exploitation would require an attacker able to trigger the NoC ADB400 power\u2011down sequence, which is unlikely without privileged or kernel access or a component failure. Overall, the risk is low to moderate, but the potential impact on availability warrants timely remediation."}}}}, "created": "2026-04-27T21:00:11.926026+00:00", "updated": "2026-04-28T23:45:16.050934+00:00", "vendors": ["linux", "linux$PRODUCT$linux_kernel"]}