CVE-2026-31596

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description An issue exists in the OCFS2 file system where the ocfs2 group extend() function assumes that the global bitmap inode block returned from ocfs2 inode lock() is already validated. In crafted filesystems, the JBD2-managed buffer path can bypass structural validation and return an invalid dinode to the resize ioctl, leading to a kernel crash.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.