CVE-2026-31454

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A use-after-free issue exists in the XFS file system. In the functions xfs inode item push() and xfs qm dquot logitem push(), the AIL lock is released to perform buffer IO. This allows the log item to be freed by the dquot shrinker or background reclaim once the cluster buffer no longer protects it. A subsequent spin lock() call then dereferences lip->li ailp, leading to the memory corruption.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.