CVE-2026-31707 ksmbd: validate response sizes in ipc_validate_msg()

🗓️ 01 May 2026 13:56:05Reported by LinuxType

ksmbd fixes overflow in ipc_validate_msg (CVE-2026-31707) using check_add_overflow and ngroups bound.

Reporter	Title	Published	Views	Family All 39
ATTACKERKB	CVE-2026-31707	1 May 202613:56	–	attackerkb
AstraLinux	Astra Linux - уязвимость в linux-5.10	20 May 202605:53	–	astralinux
Chainguard	CVE-2026-31707 vulnerabilities	8 May 202607:18	–	cgr
CNNVD	Linux kernel 安全漏洞	1 May 202600:00	–	cnnvd
CVE	CVE-2026-31707	1 May 202613:56	–	cve
Debian CVE	CVE-2026-31707	1 May 202613:56	–	debiancve
EUVD	EUVD-2026-26516	1 May 202613:56	–	euvd
NVD	CVE-2026-31707	1 May 202614:16	–	nvd
OPENSUSE Linux	kernel-devel-7.0.7-1.1 on GA media (moderate)	17 May 202600:00	–	opensuse
OSV	BELL-CVE-2026-31707	2 May 202606:09	–	osv

[
  {
    "product": "Linux",
    "vendor": "Linux",
    "defaultStatus": "unaffected",
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "programFiles": [
      "fs/smb/server/mgmt/user_config.c",
      "fs/smb/server/transport_ipc.c"
    ],
    "versions": [
      {
        "version": "0626e6641f6b467447c81dd7678a69c66f7746cf",
        "lessThan": "bf396208418371174869baba9434535cd3288e80",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "0626e6641f6b467447c81dd7678a69c66f7746cf",
        "lessThan": "7dd0c858e1909769a4c91842724315ee74f1a5f1",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "0626e6641f6b467447c81dd7678a69c66f7746cf",
        "lessThan": "299db777ea0cfa5c407e41b045c24a14c034c27b",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "0626e6641f6b467447c81dd7678a69c66f7746cf",
        "lessThan": "99c631d0366c1eab8fb188fe66425f4581ebdde4",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "0626e6641f6b467447c81dd7678a69c66f7746cf",
        "lessThan": "d6a6aa81eac2c9bff66dc6e191179cb69a14426b",
        "status": "affected",
        "versionType": "git"
      }
    ]
  },
  {
    "product": "Linux",
    "vendor": "Linux",
    "defaultStatus": "affected",
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "programFiles": [
      "fs/smb/server/mgmt/user_config.c",
      "fs/smb/server/transport_ipc.c"
    ],
    "versions": [
      {
        "version": "5.15",
        "status": "affected"
      },
      {
        "version": "0",
        "lessThan": "5.15",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "6.6.141",
        "lessThanOrEqual": "6.6.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "6.12.84",
        "lessThanOrEqual": "6.12.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "6.18.25",
        "lessThanOrEqual": "6.18.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "7.0.2",
        "lessThanOrEqual": "7.0.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "7.1-rc1",
        "lessThanOrEqual": "*",
        "status": "unaffected",
        "versionType": "original_commit_for_fix"
      }
    ]
  }
]

Source	Link
git	www.git.kernel.org/stable/c/d6a6aa81eac2c9bff66dc6e191179cb69a14426b
git	www.git.kernel.org/stable/c/299db777ea0cfa5c407e41b045c24a14c034c27b
git	www.git.kernel.org/stable/c/bf396208418371174869baba9434535cd3288e80
git	www.git.kernel.org/stable/c/7dd0c858e1909769a4c91842724315ee74f1a5f1
git	www.git.kernel.org/stable/c/99c631d0366c1eab8fb188fe66425f4581ebdde4

23 May 2026 11:25Current

CVSS 3.17.1

EPSS0.00015