CVE-2026-31614

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description An issue exists in the SMB client within the check wsl eas() function. A bounds check incorrectly uses the base pointer of the extended attribute (EA) instead of the ea data field, which is offset by 8 bytes. This off-by-8 error allows an untrusted server to cause the system to read past the end of the input/output vector (iov), potentially leaking up to 8 bytes of kernel heap memory during the EA name comparison and influencing how WSL extended attributes (xattr) are interpreted.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.