File System Vulnerability in Linux Kernel's Btrfs Component
CVE-2026-31519

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 22 April 2026

What is CVE-2026-31519?

The Btrfs component of the Linux kernel has a vulnerability that affects the management of subvolumes, resulting in broken directory entries (dentries) and associated errors. This can lead to failures when attempting to delete subvolumes or create new files within them, causing significant operational disruption. The issue arises from a failure in the orphan cleanup process, where the system fails to find orphan items for subvolumes, ultimately leaving users unable to manage their data effectively. Without proper handling, this could lead to data loss or corruption as actions are obstructed by persistent error messages such as ENOENT and EEXIST.

Affected Version(s)

Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2

References

https://git.kernel.org/stable/c/d43da8de0ed376abafbad8a24...

https://git.kernel.org/stable/c/c57276ced3c3207f42182dfa2...

https://git.kernel.org/stable/c/a41a9b8d19a98b45591528c6e...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Apr 22, 2026
Vulnerability Reserved
Mar 9, 2026

CVE-2026-31519 Data

JSON