Lucene search
K

704 matches found

OSV
OSV
added 2026/04/24 3:16 p.m.5 views

DEBIAN-CVE-2026-31608

In the Linux kernel, the following vulnerability has been resolved: smb: server: avoid double-free in smbdirectfreesendmsg after smbdirectflushsendlist smbdirectflushsendlist already calls smbdirectfreesendmsg, so we should not call it again after postsendmsg moved it to the batch list...

9.8CVSS5.2AI score0.00457EPSS
Exploits0References1
NVD
NVD
added 2026/04/24 3:16 p.m.11 views

CVE-2026-31537

In the Linux kernel, the following vulnerability has been resolved: smb: server: make use of smbdirectsocket.sendio.bcredits It turns out that our code will corrupt the stream of reassabled data transfer messages when we trigger an immendiate empty send. In order to fix this we'll have a single...

5.5CVSS0.00121EPSS
Exploits0References3
NVD
NVD
added 2026/04/24 3:16 p.m.8 views

CVE-2026-31538

In the Linux kernel, the following vulnerability has been resolved: smb: server: make use of smbdirectsocket.recvio.credits.available The logic off managing recv credits by counting posted recvio and granted credits is racy. That's because the peer might already consumed a credit, but between...

7.5CVSS0.00426EPSS
Exploits0References3
NVD
NVD
added 2026/04/24 3:16 p.m.7 views

CVE-2026-31536

In the Linux kernel, the following vulnerability has been resolved: smb: server: let senddone handle a completion without IBSENDSIGNALED With smbdirectsendbatch processing we likely have requests without IBSENDSIGNALED, which will be destroyed in the final request that has IBSENDSIGNALED set. If...

9.8CVSS0.00442EPSS
Exploits0References3
OSV
OSV
added 2026/04/24 3:16 p.m.6 views

DEBIAN-CVE-2026-31537

In the Linux kernel, the following vulnerability has been resolved: smb: server: make use of smbdirectsocket.sendio.bcredits It turns out that our code will corrupt the stream of reassabled data transfer messages when we trigger an immendiate empty send. In order to fix this we'll have a single...

5.5CVSS5.4AI score0.00121EPSS
Exploits0References1
OSV
OSV
added 2026/04/24 3:16 p.m.9 views

DEBIAN-CVE-2026-31536

In the Linux kernel, the following vulnerability has been resolved: smb: server: let senddone handle a completion without IBSENDSIGNALED With smbdirectsendbatch processing we likely have requests without IBSENDSIGNALED, which will be destroyed in the final request that has IBSENDSIGNALED set. If...

9.8CVSS5.3AI score0.00442EPSS
Exploits0References1
OSV
OSV
added 2026/04/24 3:16 p.m.5 views

DEBIAN-CVE-2026-31538

In the Linux kernel, the following vulnerability has been resolved: smb: server: make use of smbdirectsocket.recvio.credits.available The logic off managing recv credits by counting posted recvio and granted credits is racy. That's because the peer might already consumed a credit, but between...

7.5CVSS5.3AI score0.00426EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2026/04/24 3:16 p.m.6 views

CVE-2026-31537

In the Linux kernel, the following vulnerability has been resolved: smb: server: make use of smbdirectsocket.sendio.bcredits It turns out that our code will corrupt the stream of reassabled data transfer messages when we trigger an immendiate empty send. In order to fix this we'll have a single...

5.5CVSS5.5AI score0.00121EPSS
Exploits0References5
UbuntuCve
UbuntuCve
added 2026/04/24 3:16 p.m.6 views

CVE-2026-31538

In the Linux kernel, the following vulnerability has been resolved: smb: server: make use of smbdirectsocket.recvio.credits.available The logic off managing recv credits by counting posted recvio and granted credits is racy. That's because the peer might already consumed a credit, but between...

7.5CVSS5.4AI score0.00426EPSS
Exploits0References5
CVE
CVE
added 2026/04/24 2:42 p.m.37 views

CVE-2026-31608

CVE-2026-31608 affects the Linux kernel SMB server. The issue is a double-free in smb_direct_free_sendmsg when invoked after smb_direct_flush_send_list(); smb_direct_flush_send_list() already calls smb_direct_free_sendmsg(), so a second call after post_sendmsg() is incorrect. The fix moves the ca...

9.8CVSS5.3AI score0.00457EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2026/04/24 2:42 p.m.33 views

CVE-2026-31608 smb: server: avoid double-free in smb_direct_free_sendmsg after smb_direct_flush_send_list()

In the Linux kernel, the following vulnerability has been resolved: smb: server: avoid double-free in smbdirectfreesendmsg after smbdirectflushsendlist smbdirectflushsendlist already calls smbdirectfreesendmsg, so we should not call it again after postsendmsg moved it to the batch list...

9.8CVSS0.00457EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2026/04/24 2:30 p.m.4 views

CVE-2026-31538

In the Linux kernel, the following vulnerability has been resolved: smb: server: make use of smbdirectsocket.recvio.credits.available The logic off managing recv credits by counting posted recvio and granted credits is racy. That's because the peer might already consumed a credit, but between...

5.4AI score0.00426EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2026/04/24 2:30 p.m.36 views

CVE-2026-31538 smb: server: make use of smbdirect_socket.recv_io.credits.available

In the Linux kernel, the following vulnerability has been resolved: smb: server: make use of smbdirectsocket.recvio.credits.available The logic off managing recv credits by counting posted recvio and granted credits is racy. That's because the peer might already consumed a credit, but between...

7.5CVSS0.00426EPSS
Exploits0References3
Debian CVE
Debian CVE
added 2026/04/24 2:30 p.m.4 views

CVE-2026-31538

In the Linux kernel, the following vulnerability has been resolved: smb: server: make use of smbdirectsocket.recvio.credits.available The logic off managing recv credits by counting posted recvio and granted credits is racy. That's because the peer might already consumed a credit, but between...

7.5CVSS5.3AI score0.00426EPSS
Exploits0
EUVD
EUVD
added 2026/04/24 2:30 p.m.6 views

EUVD-2026-25429

In the Linux kernel, the following vulnerability has been resolved: smb: server: let senddone handle a completion without IBSENDSIGNALED With smbdirectsendbatch processing we likely have requests without IBSENDSIGNALED, which will be destroyed in the final request that has IBSENDSIGNALED set. If...

5.4AI score0.00442EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/04/24 2:30 p.m.35 views

CVE-2026-31537 smb: server: make use of smbdirect_socket.send_io.bcredits

In the Linux kernel, the following vulnerability has been resolved: smb: server: make use of smbdirectsocket.sendio.bcredits It turns out that our code will corrupt the stream of reassabled data transfer messages when we trigger an immendiate empty send. In order to fix this we'll have a single...

0.00121EPSS
Exploits0References3
CVE
CVE
added 2026/04/24 2:30 p.m.18 views

CVE-2026-31537

In the Linux kernel SMB server, CVE-2026-31537 arises from improper handling of smbdirect_socket.send_io.bcredits, which can corrupt the stream of reassembled data transfer messages when triggering an immediate (empty) send. The fix introduces a single batch credit per connection; code obtaining ...

5.5CVSS5.5AI score0.00121EPSS
Exploits0References3Affected Software1
CVE
CVE
added 2026/04/24 2:30 p.m.28 views

CVE-2026-31536

The vulnerability CVE-2026-31536 affects the Linux kernel SMB direct server implementation. In smb: server: let send_done handle a completion without IB_SEND_SIGNALED, during smbdirect_send_batch processing requests may be processed without IB_SEND_SIGNALED and could be destroyed in the final req...

9.8CVSS5.4AI score0.00442EPSS
Exploits0References3Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/04/24 2:30 p.m.4 views

CVE-2026-31537

In the Linux kernel, the following vulnerability has been resolved: smb: server: make use of smbdirectsocket.sendio.bcredits It turns out that our code will corrupt the stream of reassabled data transfer messages when we trigger an immendiate empty send. In order to fix this we'll have a single...

5.5AI score0.00121EPSS
Exploits0References4Affected Software1
Debian CVE
Debian CVE
added 2026/04/24 2:30 p.m.8 views

CVE-2026-31537

In the Linux kernel, the following vulnerability has been resolved: smb: server: make use of smbdirectsocket.sendio.bcredits It turns out that our code will corrupt the stream of reassabled data transfer messages when we trigger an immendiate empty send. In order to fix this we'll have a single...

5.5CVSS5.4AI score0.00121EPSS
Exploits0
Rows per page
Query Builder