CVE-2026-31437

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A NULL pointer dereference occurs in the netfs unbuffered write() function during a retry operation. When a write subrequest is marked NETFS SREQ NEED RETRY, the system calls stream->prepare write() without verifying if the pointer is NULL. In filesystems like 9P, where the prepare write operation is not set, this leads to a crash if get user pages() fails with an -EFAULT error.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.