VYPR
← All advisories
Medium severity5.5NVD Advisory· Published May 1, 2026· Updated May 12, 2026

CVE-2026-31784

CVE-2026-31784

Description

In the Linux kernel, the following vulnerability has been resolved:

drm/xe/pxp: Clear restart flag in pxp_start after jumping back

If we don't clear the flag we'll keep jumping back at the beginning of the function once we reach the end.

(cherry picked from commit 0850ec7bb2459602351639dccf7a68a03c9d1ee0)

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

A missing flag clear in the Linux kernel's drm/xe/pxp driver causes an infinite loop in pxp_start, leading to a denial of service.

Vulnerability

In the Linux kernel's drm/xe/pxp driver, the function pxp pxp_start` function fails to clear a restart flag after a jump back to the beginning of the function. This oversight causes the function to repeatedly jump back, resulting in an infinite loop [1].

Exploitation

An attacker with local access and the ability to trigger the PXP (Protected Execution Environment) start sequence can exploit this bug. No special privileges beyond normal user access to the graphics subsystem are required, as the vulnerability lies in a kernel function that can be invoked through standard DRM interfaces.

Impact

Successful exploitation leads to a denial of service (DoS) by causing the kernel to hang in an infinite loop, consuming CPU resources and preventing the system from making progress. The PXP functionality from completing. This can render the system unresponsive or cause a soft lockup.

Mitigation

The fix, which clears the restart flag after the jump, has been applied to the Linux kernel stable tree [1]. Users should update to a kernel version containing the commit 0850ec7bb245 (or its backports) to remediate the issue.

References
  1. Making sure you're not a bot!

AI Insight generated on May 18, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.

Affected products

7
  • Linux/Kernel7 versions
    cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*+ 6 more
    • cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*range: >=6.17,<6.18.22
    • cpe:2.3:o:linux:linux_kernel:7.0:rc1:*:*:*:*:*:*
    • cpe:2.3:o:linux:linux_kernel:7.0:rc2:*:*:*:*:*:*
    • cpe:2.3:o:linux:linux_kernel:7.0:rc3:*:*:*:*:*:*
    • cpe:2.3:o:linux:linux_kernel:7.0:rc4:*:*:*:*:*:*
    • cpe:2.3:o:linux:linux_kernel:7.0:rc5:*:*:*:*:*:*
    • cpe:2.3:o:linux:linux_kernel:7.0:rc6:*:*:*:*:*:*

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

3

News mentions

0

No linked articles in our index yet.