CVE-2026-31597

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A use-after-free issue exists in the ocfs2 fault() function. This occurs because filemap fault() may drop the mmap lock before returning VM FAULT RETRY. In such cases, a concurrent munmap() can trigger remove vma() and free the vm area struct via RCU. Consequently, the saved vma pointer in ocfs2 fault() becomes a dangling pointer, which is then dereferenced during the trace ocfs2 fault() call.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.