CVE-2026-31476

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A flaw in the ksmbd module occurs when a multichannel session binding request fails, such as due to an incorrect password. In these instances, the error path unconditionally sets the sess->state variable to SMB2 SESSION EXPIRED. Because the sess pointer refers to a target session retrieved via the ksmbd session lookup slowpath() function—which may belong to a user on a different connection—a remote attacker can invalidate any active session by sending a binding request with an incorrect password, resulting in a Denial of Service (DoS).

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.