CVE-2026-31536

CRITICAL 9.8

smb: server: let send_done handle a completion without IB_SEND_SIGNALED

CVSS Score

9.8

EPSS Score

0.0%

EPSS Percentile

0th

In the Linux kernel, the following vulnerability has been resolved: smb: server: let send_done handle a completion without IB_SEND_SIGNALED With smbdirect_send_batch processing we likely have requests without IB_SEND_SIGNALED, which will be destroyed in the final request that has IB_SEND_SIGNALED set. If the connection is broken all requests are signaled even without explicit IB_SEND_SIGNALED.

Vendor	linux
Product	linux
Ecosystems	Linux Kernel
Industries	Technology
Published	Apr 24, 2026
Last Updated	May 11, 2026

Stay Ahead of the Next One

Get instant alerts for linux linux

Be the first to know when new critical vulnerabilities affecting linux linux are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

CVSS v3 Breakdown

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Scope

Confidentiality

Integrity

Availability

Affected Versions

Linux / Linux

0626e6641f6b467447c81dd7678a69c66f7746cf < 24082642654f3e5149913946e89c00a297a8868f 0626e6641f6b467447c81dd7678a69c66f7746cf < e38b415c024bc3b6321bf8650dbf3f4aab8e74b3 0626e6641f6b467447c81dd7678a69c66f7746cf < 9da82dc73cb03e85d716a2609364572367a5ff47

Linux / Linux

5.15

References

NVD ↗ CVE.org ↗ EPSS Data ↗

git.kernel.org: https://git.kernel.org/stable/c/24082642654f3e5149913946e89c00a297a8868f git.kernel.org: https://git.kernel.org/stable/c/e38b415c024bc3b6321bf8650dbf3f4aab8e74b3 git.kernel.org: https://git.kernel.org/stable/c/9da82dc73cb03e85d716a2609364572367a5ff47