CVE-2026-31612

CVSS v3.1

7.5

High

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description In the ksmbd module, the smb2 get ea() function reads the EaNameLength variable from a client request and passes it to strncmp() as the comparison length without verifying if the name length matches the size of the received input buffer. This lack of validation can lead to the leakage of uninitialized heap values to the client.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2026-31612

ECHO-978F-25D6-C175

OESA-2026-2416

OPENSUSE-SU-2026:10703-1

Affected Products

Linux Kernel

CVE-2026-31612

Related Identifiers

Affected Products

References · 109