CVE-2026-31536

Summary

In the Linux kernel, the following vulnerability has been resolved:

smb: server: let send_done handle a completion without IB_SEND_SIGNALED

With smbdirect_send_batch processing we likely have requests without IB_SEND_SIGNALED, which will be destroyed in the final request that has IB_SEND_SIGNALED set.

If the connection is broken all requests are signaled even without explicit IB_SEND_SIGNALED.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux0626e6641f6b467447c81dd7678a69c66f7746cf < 24082642654f3e5149913946e89c00a297a8868faffected
LinuxLinux0626e6641f6b467447c81dd7678a69c66f7746cf < e38b415c024bc3b6321bf8650dbf3f4aab8e74b3affected
LinuxLinux0626e6641f6b467447c81dd7678a69c66f7746cf < 9da82dc73cb03e85d716a2609364572367a5ff47affected
LinuxLinux5.15affected
LinuxLinux0 < 5.15unaffected
LinuxLinux6.18.11 <= 6.18.*unaffected
LinuxLinux6.19.1 <= 6.19.*unaffected
LinuxLinux7.0 <= *unaffected

Weaknesses

References