CVE-2026-31716

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A buffer overflow exists in the NTFS3 driver during journal-replay file record checks. The check file record() function validates rec->total against the record size but fails to validate rec->used. Consequently, journal-replay handlers in do action() use rec->used to calculate memmove() lengths. If rec->used is larger than the record size or smaller than the offset of a validated attribute, subtractions can underflow, leading to excessive memory being copied into a 4kb buffer.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.