CVE-2026-31762 - Vulnerability Details

- iio: gyro: mpu3050: Fix irq resource leak

Description

In the Linux kernel, the following vulnerability has been resolved:

iio: gyro: mpu3050: Fix irq resource leak

The interrupt handler is setup but only a few lines down if
iio_trigger_register() fails the function returns without properly
releasing the handler.

Add cleanup goto to resolve resource leak.

Detected by Smatch:
drivers/iio/gyro/mpu3050-core.c:1128 mpu3050_trigger_probe() warn:
'irq' from request_threaded_irq() not released on lines: 1124.

Published: 2026-05-01

Score: n/a

EPSS: n/a

KEV: No

Impact:

Action:

Analysis

Impact

The MPU3050 gyroscope driver in the Linux kernel contains a flaw where the interrupt handler is not released if the iio_trigger_register() call fails. The flaw qualifies as a Resource Leak (CWE-772) because the IRQ handler is not cleaned up. This leaves an allocated IRQ handler that is never freed, resulting in a kernel resource leak. While the vulnerability does not provide direct code execution or privilege escalation, exhausting IRQ resources can degrade interrupt handling and overall system stability, potentially causing a denial of service.

Affected Systems

All Linux kernel implementations that include the MPU3050 gyroscope driver are affected. The issue manifests in the generic Linux kernel, regardless of distribution, as long as the driver is compiled into the kernel or loaded as a module. No specific vendor or distribution versions are listed, so any kernel that has not yet incorporated the recent commit that adds the cleanup goto is susceptible.

Risk and Exploitability

There is no EPSS score available and the vulnerability is not listed in the CISA KEV catalog, indicating limited or unknown exploitation activity. The CVSS score is not provided, yet the nature of a persistent IRQ leak suggests a moderate to high severity because repeated failures can accumulate and exhaust kernel resources. A local attacker with the ability to provoke repeated trigger registration failures could accelerate the leak. The likely attack vector is a local process that can interact with the device via the iIO subsystem, though no external network vector is indicated.

Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).

Vendor Product Default status Versions

Linux

unaffected

Version	Status	Constraints
`3904b28efb2c780c23dcddfb87e07fe0230661e5`	affected	< beb23092571e627190f23da4bb8548065cacd89c
`3904b28efb2c780c23dcddfb87e07fe0230661e5`	affected	< 658d9deb45d5032baf388ac51991d1e789157334
`3904b28efb2c780c23dcddfb87e07fe0230661e5`	affected	< 889253494ec73d60bd47c0518f8fe3a748520d5b
`3904b28efb2c780c23dcddfb87e07fe0230661e5`	affected	< 8f237c408f3007d7d9667623ffb41a9e9d661ee9
`3904b28efb2c780c23dcddfb87e07fe0230661e5`	affected	< b52fd1644ad2c4e96bbec97543a966d7ad8f21ea
`3904b28efb2c780c23dcddfb87e07fe0230661e5`	affected	< 3a8e68d65a443de05061818823037931674740e0
`3904b28efb2c780c23dcddfb87e07fe0230661e5`	affected	< e66215fc1878357d5c980066e650f542330524af
`3904b28efb2c780c23dcddfb87e07fe0230661e5`	affected	< 4216db1043a3be72ef9c2b7b9f393d7fa72496e6

Linux

affected

Version	Status	Constraints
`4.10`	affected	—
`0`	unaffected	< 4.10
`5.10.253`	unaffected	≤ 5.10.*
`5.15.203`	unaffected	≤ 5.15.*
`6.1.168`	unaffected	≤ 6.1.*
`6.6.134`	unaffected	≤ 6.6.*
`6.12.81`	unaffected	≤ 6.12.*
`6.18.22`	unaffected	≤ 6.18.*
`6.19.12`	unaffected	≤ 6.19.*
`7.0`	unaffected	≤ *

No data.

Vendor Product Confidence Versions

Linux

Linux Kernel

99%

Version	Status	Scheme	Platform
`[3904b28efb2c780c23dcddfb87e07fe0230661e5,beb23092571e627190f23da4bb8548065cacd89c)`	affected	code_commit	—
`[3904b28efb2c780c23dcddfb87e07fe0230661e5,658d9deb45d5032baf388ac51991d1e789157334)`	affected	code_commit	—
`[3904b28efb2c780c23dcddfb87e07fe0230661e5,889253494ec73d60bd47c0518f8fe3a748520d5b)`	affected	code_commit	—
`[3904b28efb2c780c23dcddfb87e07fe0230661e5,8f237c408f3007d7d9667623ffb41a9e9d661ee9)`	affected	code_commit	—
`[3904b28efb2c780c23dcddfb87e07fe0230661e5,b52fd1644ad2c4e96bbec97543a966d7ad8f21ea)`	affected	code_commit	—
`[3904b28efb2c780c23dcddfb87e07fe0230661e5,3a8e68d65a443de05061818823037931674740e0)`	affected	code_commit	—
`[3904b28efb2c780c23dcddfb87e07fe0230661e5,e66215fc1878357d5c980066e650f542330524af)`	affected	code_commit	—
`[3904b28efb2c780c23dcddfb87e07fe0230661e5,4216db1043a3be72ef9c2b7b9f393d7fa72496e6)`	affected	code_commit	—

Linux

Linux Kernel

99%

Version	Status	Scheme	Platform
`4.10`	affected	generic	—
`[0,4.10)`	unaffected	semver	—
`[5.10.253,5.11.0)`	unaffected	semver	—
`[5.15.203,5.16.0)`	unaffected	semver	—
`[6.1.168,6.2.0)`	unaffected	semver	—
`[6.6.134,6.7.0)`	unaffected	semver	—
`[6.12.81,6.13.0)`	unaffected	semver	—
`[6.18.22,6.19.0)`	unaffected	semver	—
`[6.19.12,6.20.0)`	unaffected	semver	—
`[7.0,*]`	unaffected	generic	—

Found an issue or want to improve our Enrichment? You can suggest it directly by opening an issue on our dedicated GitHub repository .

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

Update the Linux kernel to a release that includes the cleanup goto patch. The fix is available in recent kernel commits; applying the latest stable kernel or backporting the patch will resolve the leak.
If an update is not immediately possible, manually apply the patch from the listed kernel commit references: apply the code changes that add the cleanup goto for the IRQ handler.
Disable or remove the MPU3050 gyroscope driver if the device is not required, preventing registration failures from leaking IRQ resources.
Continuously monitor kernel logs for messages related to iio_trigger_register failures, and verify that no residual IRQ handlers accumulate.

Generated by OpenCVE AI on May 2, 2026 at 11:42 UTC.

Tracking

Sign in to view the affected projects.

Advisories

Source	ID	Title
Debian DLA	DLA-4561-1	linux-6.1 security update
Debian DSA	DSA-6243-1	linux security update

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

No EPSS score available.

Key SSVC decision points have not yet been added.

References

Link	Providers
https://git.kernel.org/stable/c/3a8e68d65a443de05061818823037931674740e0
https://git.kernel.org/stable/c/4216db1043a3be72ef9c2b7b9f393d7fa72496e6
https://git.kernel.org/stable/c/658d9deb45d5032baf388ac51991d1e789157334
https://git.kernel.org/stable/c/889253494ec73d60bd47c0518f8fe3a748520d5b
https://git.kernel.org/stable/c/8f237c408f3007d7d9667623ffb41a9e9d661ee9
https://git.kernel.org/stable/c/b52fd1644ad2c4e96bbec97543a966d7ad8f21ea
https://git.kernel.org/stable/c/beb23092571e627190f23da4bb8548065cacd89c
https://git.kernel.org/stable/c/e66215fc1878357d5c980066e650f542330524af
https://lore.kernel.org/linux-cve-announce/2026050146-CVE-2026-31762-c535@gregkh/T
https://nvd.nist.gov/vuln/detail/CVE-2026-31762
https://www.cve.org/CVERecord?id=CVE-2026-31762

History

Sat, 02 May 2026 10:45:00 +0000

Type	Values Removed	Values Added
Weaknesses	CWE-577

Sat, 02 May 2026 00:15:00 +0000

Type	Values Removed	Values Added
Weaknesses		CWE-772
References		https://lore.kernel.org/linux-cve-announce/2026050146-CVE-2026-31762-c535@gregkh/T https://nvd.nist.gov/vuln/detail/CVE-2026-31762 https://www.cve.org/CVERecord?id=CVE-2026-31762

Fri, 01 May 2026 23:45:00 +0000

Type	Values Removed	Values Added
Weaknesses		CWE-577

Fri, 01 May 2026 14:45:00 +0000

Type	Values Removed	Values Added
Description		In the Linux kernel, the following vulnerability has been resolved: iio: gyro: mpu3050: Fix irq resource leak The interrupt handler is setup but only a few lines down if iio_trigger_register() fails the function returns without properly releasing the handler. Add cleanup goto to resolve resource leak. Detected by Smatch: drivers/iio/gyro/mpu3050-core.c:1128 mpu3050_trigger_probe() warn: 'irq' from request_threaded_irq() not released on lines: 1124.
Title		iio: gyro: mpu3050: Fix irq resource leak
First Time appeared		Linux Linux linux Kernel
CPEs		cpe:2.3:o:linux:linux_kernel::::::::
Vendors & Products		Linux Linux linux Kernel
References		https://git.kernel.org/stable/c/3a8e68d65a443de05061818823037931674740e0 https://git.kernel.org/stable/c/4216db1043a3be72ef9c2b7b9f393d7fa72496e6 https://git.kernel.org/stable/c/658d9deb45d5032baf388ac51991d1e789157334 https://git.kernel.org/stable/c/889253494ec73d60bd47c0518f8fe3a748520d5b https://git.kernel.org/stable/c/8f237c408f3007d7d9667623ffb41a9e9d661ee9 https://git.kernel.org/stable/c/b52fd1644ad2c4e96bbec97543a966d7ad8f21ea https://git.kernel.org/stable/c/beb23092571e627190f23da4bb8548065cacd89c https://git.kernel.org/stable/c/e66215fc1878357d5c980066e650f542330524af

Subscriptions

Linux Linux Kernel

MITRE

Status: PUBLISHED

Assigner: Linux

Published: 2026-05-01T14:14:53.891Z

Updated: 2026-05-01T14:14:53.891Z

Reserved: 2026-03-09T15:48:24.139Z

Link: CVE-2026-31762

Vulnrichment

No data.

NVD

Status : Awaiting Analysis

Published: 2026-05-01T15:16:39.277

Modified: 2026-05-01T15:24:14.893

Link: CVE-2026-31762

Redhat

Severity :

Publid Date: 2026-05-01T00:00:00Z

Links: CVE-2026-31762 - Bugzilla

OpenCVE Enrichment

Updated: 2026-05-02T10:30:40Z

Weaknesses

CWE-772

Impact

Affected Systems

Risk and Exploitability

Tracking

Subscriptions

JSON object

JSON object

JSON object

JSON object

JSON object