Linux Kernel Vulnerability in ksmbd Affects SMB File Operations
CVE-2026-31433

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 22 April 2026

What is CVE-2026-31433?

A vulnerability in the Linux kernel's ksmbd component can lead to potential out-of-bounds writes during SMB file operations. Specifically, when processing a compound request that includes QUERY_DIRECTORY and QUERY_INFO commands, a lack of validation for the OutputBufferLength allows for unsafe copying of filenames into the smb2_file_all_info structure. This oversight could result in buffer overflows or memory corruption during the smbConvertToUTF16 conversion process. The remedy involves accurate buffer size calculation and implementing validation checks to prevent exploitation.

Affected Version(s)

Linux f2283680a80571ca82d710bc6ecd8f8beac67d63 < 3a852f9d1c981fb14f6bf4e24999e0ea8088a7d7

Linux 9f297df20d93411c0b4ddad7f88ba04a7cd36e77 < 4cca3eff2099b18672934a39cee70aed835d652c

Linux e2b76ab8b5c9327ab2dae6da05d0752eb2f4771d < 358cdaa1f7fbf2712cb4c5f6b59cb9a5c673c5fe

References

https://git.kernel.org/stable/c/3a852f9d1c981fb14f6bf4e24...

https://git.kernel.org/stable/c/4cca3eff2099b18672934a39c...

https://git.kernel.org/stable/c/358cdaa1f7fbf2712cb4c5f6b...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Apr 22, 2026
Vulnerability Reserved
Mar 9, 2026

CVE-2026-31433 Data

JSON