CVE-2026-31538

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.18

Description A race condition exists in the SMB server logic used for managing receive credits. The process of counting posted recv io and granted credits is racy because a peer may consume a credit before the completion is processed in the recv done() function. This creates a window where credits are granted that do not actually exist.

Recommendations Update to version 6.18 or later.