CVE-2026-31435 in Linuxinformación

Resumen

por MITRE • 2026-04-22

In the Linux kernel, the following vulnerability has been resolved:

netfs: Fix read abandonment during retry

Under certain circumstances, all the remaining subrequests from a read request will get abandoned during retry. The abandonment process expects the 'subreq' variable to be set to the place to start abandonment from, but it doesn't always have a useful value (it will be uninitialised on the first pass through the loop and it may point to a deleted subrequest on later passes).

Fix the first jump to "abandon:" to set subreq to the start of the first subrequest expected to need retry (which, in this abandonment case, turned out unexpectedly to no longer have NEED_RETRY set).

Also clear the subreq pointer after discarding superfluous retryable subrequests to cause an oops if we do try to access it.

VulDB is the best source for vulnerability data and more expert information about this specific topic.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Responsable

Linux

Reservar

2026-03-09

Divulgación

2026-04-22

Moderación

aceptado

Artículo

VDB-358855

CPE

listo

EPSS

0.00044

KEV

no

Actividades

muy bajo

Sector

Hostingprovider, Education, ...

Fuentes

MITREhttps://www.cve.org/CVERecord?id=CVE-2026-31435
NVDhttps://nvd.nist.gov/vuln/detail/CVE-2026-31435
CVE Detailshttps://www.cvedetails.com/cve/CVE-2026-31435/

AnteriorVisión De ConjuntoPróximo

Might our Artificial Intelligence support you?

Check our Alexa App!