CVE-2026-31446

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A use-after-free issue exists in the ext4 file system during the unmount process. The problem occurs when update super work races with umount, specifically when ext4 notify error sysfs() calls sysfs notify(). This sequence accesses a kernfs node after it has been freed by kobject del() within the ext4 unregister sysfs() function.

Recommendations As a temporary workaround, restrict access to the /proc/fs/ext4/xx/mb groups interface to minimize the risk of triggering the race condition during unmount.