CVE-2026-31403

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description The Linux kernel contains a flaw in the Network File System Daemon (NFSD) related to handling network namespace references for the /proc/fs/nfs/exports file descriptor. Specifically, the code does not maintain a reference to the network namespace for the lifetime of the /proc/fs/nfs/exports file descriptor. This can lead to a use-after-free condition where a freed cache detail is dereferenced during subsequent reads on the open file descriptor, potentially occurring when a network namespace is torn down (e.g., container destruction). The issue arises from the lack of a reference to the struct net for the duration the file descriptor is open, allowing nfsd net exit() to free the cache while the file descriptor remains open.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.