cve-2026-31560

CVE-2026-31560 is a Linux kernel vulnerability in the DesignWare SPI DMA driver where a timeout or error can cause a null-pointer dereference when the driver attempts to log an error message without a valid SPI message. The flaw was published by NVD on April 24, 2026, but remains awaiting enrichment, meaning severity labels from scanners should be treated as provisional. This tag covers discussions about the technical details of the bug, its root cause in faulty error logging, and implications for Linux system stability. Administrators and developers working with SPI DMA on affected kernels should review the fix and monitor for updated CVSS scores.