CVE-2026-31706

🗓️ 01 May 2026 13:56:04Reported by LinuxType

Linux kernel ksmbd fixes smb_inherit_dacl by validating num_aces to prevent large uninitialized allocations.

Reporter	Title	Published	Views	Family All 43
ATTACKERKB	CVE-2026-31706	1 May 202613:56	–	attackerkb
Chainguard	CVE-2026-31706 vulnerabilities	8 May 202607:18	–	cgr
CNNVD	Linux kernel 安全漏洞	1 May 202600:00	–	cnnvd
Cvelist	CVE-2026-31706 ksmbd: validate num_aces and harden ACE walk in smb_inherit_dacl()	1 May 202613:56	–	cvelist
Debian CVE	CVE-2026-31706	1 May 202613:56	–	debiancve
EUVD	EUVD-2026-26515	1 May 202613:56	–	euvd
NVD	CVE-2026-31706	1 May 202614:16	–	nvd
OPENSUSE Linux	kernel-devel-7.0.7-1.1 on GA media (moderate)	17 May 202600:00	–	opensuse
OSV	BELL-CVE-2026-31706	6 May 202606:11	–	osv
OSV	CGA-C2PG-26RF-8X6G	8 May 202607:01	–	osv

NVD

Vulners

CNA

Node

linux linux_kernelRange5.15–6.12.84

linux linux_kernelRange6.13–6.18.25

linux linux_kernelRange6.19–7.0.2

[
  {
    "product": "Linux",
    "vendor": "Linux",
    "defaultStatus": "unaffected",
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "programFiles": [
      "fs/smb/server/smbacl.c"
    ],
    "versions": [
      {
        "version": "e2f34481b24db2fd634b5edb0a5bd0e4d38cc6e9",
        "lessThan": "063a7409b0de46d7c770b65bb0338e6fdb3b1f0a",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "e2f34481b24db2fd634b5edb0a5bd0e4d38cc6e9",
        "lessThan": "3e5360b422dd741cb315654a191fa73869a37414",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "e2f34481b24db2fd634b5edb0a5bd0e4d38cc6e9",
        "lessThan": "59c32abaaec9cdd6164811c7e864e72f7554b82d",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "e2f34481b24db2fd634b5edb0a5bd0e4d38cc6e9",
        "lessThan": "3e4e2ea2a781018ed5d75f969e3e5606beb66e48",
        "status": "affected",
        "versionType": "git"
      }
    ]
  },
  {
    "product": "Linux",
    "vendor": "Linux",
    "defaultStatus": "affected",
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "programFiles": [
      "fs/smb/server/smbacl.c"
    ],
    "versions": [
      {
        "version": "5.15",
        "status": "affected"
      },
      {
        "version": "0",
        "lessThan": "5.15",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "6.12.84",
        "lessThanOrEqual": "6.12.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "6.18.25",
        "lessThanOrEqual": "6.18.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "7.0.2",
        "lessThanOrEqual": "7.0.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "7.1-rc1",
        "lessThanOrEqual": "*",
        "status": "unaffected",
        "versionType": "original_commit_for_fix"
      }
    ]
  }
]

Source	Link
git	www.git.kernel.org/stable/c/59c32abaaec9cdd6164811c7e864e72f7554b82d
git	www.git.kernel.org/stable/c/063a7409b0de46d7c770b65bb0338e6fdb3b1f0a
git	www.git.kernel.org/stable/c/3e4e2ea2a781018ed5d75f969e3e5606beb66e48
git	www.git.kernel.org/stable/c/3e5360b422dd741cb315654a191fa73869a37414

11 May 2026 22:14Current

6Medium risk

Vulners AI Score6

CVSS 3.18.8

EPSS0.00056