{
  "public_date" : "2026-05-01T00:00:00Z",
  "bugzilla" : {
    "description" : "kernel: counter: rz-mtu3-cnt: prevent counter from being toggled multiple times",
    "id" : "2464501",
    "url" : "https://bugzilla.redhat.com/show_bug.cgi?id=2464501"
  },
  "cwe" : "CWE-911",
  "details" : [ "A flaw was found in the Linux kernel's `rz-mtu3-cnt` counter module. A local user can exploit this by repeatedly writing '0' to the sysfs enable file, which causes the runtime Power Management (PM) usage count to underflow. This can lead to attempts to access hardware registers with their clocks off, potentially causing system instability or a denial of service (DoS). Additionally, repeated writes of '1' can cause the usage count to increment indefinitely, requiring an equal number of '0' writes to reset it." ],
  "package_state" : [ {
    "product_name" : "Red Hat Enterprise Linux 10",
    "fix_state" : "Not affected",
    "package_name" : "kernel",
    "cpe" : "cpe:/o:redhat:enterprise_linux:10"
  }, {
    "product_name" : "Red Hat Enterprise Linux 6",
    "fix_state" : "Not affected",
    "package_name" : "kernel",
    "cpe" : "cpe:/o:redhat:enterprise_linux:6"
  }, {
    "product_name" : "Red Hat Enterprise Linux 7",
    "fix_state" : "Not affected",
    "package_name" : "kernel",
    "cpe" : "cpe:/o:redhat:enterprise_linux:7"
  }, {
    "product_name" : "Red Hat Enterprise Linux 7",
    "fix_state" : "Not affected",
    "package_name" : "kernel-rt",
    "cpe" : "cpe:/o:redhat:enterprise_linux:7"
  }, {
    "product_name" : "Red Hat Enterprise Linux 8",
    "fix_state" : "Not affected",
    "package_name" : "kernel",
    "cpe" : "cpe:/o:redhat:enterprise_linux:8"
  }, {
    "product_name" : "Red Hat Enterprise Linux 8",
    "fix_state" : "Not affected",
    "package_name" : "kernel-rt",
    "cpe" : "cpe:/o:redhat:enterprise_linux:8"
  }, {
    "product_name" : "Red Hat Enterprise Linux 9",
    "fix_state" : "Not affected",
    "package_name" : "kernel",
    "cpe" : "cpe:/o:redhat:enterprise_linux:9"
  }, {
    "product_name" : "Red Hat Enterprise Linux 9",
    "fix_state" : "Not affected",
    "package_name" : "kernel-rt",
    "cpe" : "cpe:/o:redhat:enterprise_linux:9"
  } ],
  "references" : [ "https://www.cve.org/CVERecord?id=CVE-2026-31741\nhttps://nvd.nist.gov/vuln/detail/CVE-2026-31741\nhttps://lore.kernel.org/linux-cve-announce/2026050139-CVE-2026-31741-08c6@gregkh/T" ],
  "name" : "CVE-2026-31741",
  "csaw" : false
}