CVE-2026-31433

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description An out-of-bounds write exists in the ksmbd component within the get file all info() function during the processing of compound requests consisting of QUERY DIRECTORY and QUERY INFO (FILE ALL INFORMATION). When the first command consumes most of the max trans size, the system may call smbConvertToUTF16() with PATH MAX without validating the client-provided OutputBufferLength. If the filename length exceeds the available buffer space, it can lead to memory corruption or buffer overflows during the conversion process.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.