๐Ÿ” CVE Alert

CVE-2026-31409

HIGH 8.8

ksmbd: unset conn->binding on failed binding request

CVSS Score
8.8
EPSS Score
0.0%
EPSS Percentile
0th

In the Linux kernel, the following vulnerability has been resolved: ksmbd: unset conn->binding on failed binding request When a multichannel SMB2_SESSION_SETUP request with SMB2_SESSION_REQ_FLAG_BINDING fails ksmbd sets conn->binding = true but never clears it on the error path. This leaves the connection in a binding state where all subsequent ksmbd_session_lookup_all() calls fall back to the global sessions table. This fix it by clearing conn->binding = false in the error path.

Vendor linux
Product linux
Ecosystems
Industries
Technology
Published Apr 6, 2026
Last Updated Jun 1, 2026
Stay Ahead of the Next One

Get instant alerts for linux linux

Be the first to know when new high vulnerabilities affecting linux linux are published โ€” delivered to Slack, Telegram or Discord.

Get Free Alerts โ†’ Free ยท No credit card ยท 60 sec setup

CVSS v3 Breakdown

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability

Affected Versions

Linux / Linux
f5a544e3bab78142207e0242d22442db85ba1eff < 7e8b270813079c785696bce8802a3f920665c88c f5a544e3bab78142207e0242d22442db85ba1eff < d073870dab8f6dadced81d13d273ff0b21cb7f4e f5a544e3bab78142207e0242d22442db85ba1eff < 6ebef4a220a1ebe345de899ebb9ae394206fe921 f5a544e3bab78142207e0242d22442db85ba1eff < 89afe5e2dbea6e9d8e5f11324149d06fa3a4efca f5a544e3bab78142207e0242d22442db85ba1eff < 9feb2d1bf86d9e5e66b8565f37f8d3a7d281a772 f5a544e3bab78142207e0242d22442db85ba1eff < 6260fc85ed1298a71d24a75d01f8b2e56d489a60 f5a544e3bab78142207e0242d22442db85ba1eff < 282343cf8a4a5a3603b1cb0e17a7083e4a593b03
Linux / Linux
5.15

References

NVD โ†— CVE.org โ†— EPSS Data โ†—
git.kernel.org: https://git.kernel.org/stable/c/7e8b270813079c785696bce8802a3f920665c88c git.kernel.org: https://git.kernel.org/stable/c/d073870dab8f6dadced81d13d273ff0b21cb7f4e git.kernel.org: https://git.kernel.org/stable/c/6ebef4a220a1ebe345de899ebb9ae394206fe921 git.kernel.org: https://git.kernel.org/stable/c/89afe5e2dbea6e9d8e5f11324149d06fa3a4efca git.kernel.org: https://git.kernel.org/stable/c/9feb2d1bf86d9e5e66b8565f37f8d3a7d281a772 git.kernel.org: https://git.kernel.org/stable/c/6260fc85ed1298a71d24a75d01f8b2e56d489a60 git.kernel.org: https://git.kernel.org/stable/c/282343cf8a4a5a3603b1cb0e17a7083e4a593b03