CVE-2026-31609

CRITICAL 9.8

smb: client: avoid double-free in smbd_free_send_io() after smbd_send_batch_flush()

CVSS Score

9.8

EPSS Score

0.0%

EPSS Percentile

0th

In the Linux kernel, the following vulnerability has been resolved: smb: client: avoid double-free in smbd_free_send_io() after smbd_send_batch_flush() smbd_send_batch_flush() already calls smbd_free_send_io(), so we should not call it again after smbd_post_send() moved it to the batch list.

Vendor	linux
Product	linux
Ecosystems	Linux Kernel
Industries	Technology
Published	Apr 24, 2026
Last Updated	May 23, 2026

Stay Ahead of the Next One

Get instant alerts for linux linux

Be the first to know when new critical vulnerabilities affecting linux linux are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

CVSS v3 Breakdown

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Scope

Confidentiality

Integrity

Availability

Affected Versions

Linux / Linux

cca0526ef2344cab6944d7f441fc24e152da031b < a9940dcbe5cb92482c04efc7341039ddf7dbf607 37b5c06956183b65e6808b509cf637632016cdf7 < 22b7c1c619d808aec4cad3dc42103345e370d107 21538121efe6c8c5b51c742fa02cbe820bc48714 < f9a162c2bbcd0ac85bd07c5b37cf20286048b65c 21538121efe6c8c5b51c742fa02cbe820bc48714 < 27b7c3e916218b5eb2ee350211140e961bfc49be 6.18.11 < 6.18.24 6.19.1 < 6.19.14

Linux / Linux

7.0

References

NVD ↗ CVE.org ↗ EPSS Data ↗

git.kernel.org: https://git.kernel.org/stable/c/a9940dcbe5cb92482c04efc7341039ddf7dbf607 git.kernel.org: https://git.kernel.org/stable/c/22b7c1c619d808aec4cad3dc42103345e370d107 git.kernel.org: https://git.kernel.org/stable/c/f9a162c2bbcd0ac85bd07c5b37cf20286048b65c git.kernel.org: https://git.kernel.org/stable/c/27b7c3e916218b5eb2ee350211140e961bfc49be