HIGHCVE-2026-31693Published Modified CNA Linux
CVE-2026-31693: cifs: some missing initializations on replay
In the Linux kernel, the following vulnerability has been resolved: cifs: some missing initializations on replay In several places in the code, we have a label to signify the start of the code where a request can be replayed if necessary. However, some of these places were missing the necessary reinitializations of certain local variables before replay. This change makes sure that these variables get initialized after the label.
Metrics
- CVSS v3.1
- 7.8
- Severity
- HIGH
- Fixed in
- 0
- Affected Products
- 2
Fix available
014f66f44646333d2bfd7ece36585874fd72f82861d731e512134495e0ef490ade0e4d91dc0d515ec6.6.1286.12.756.18.166.19.67.07c9ce68192eef14c777cb6ce17155d2eb2431aeac854ab481ece4b3e5f4c2e8b22824f015ff874a5c99e160938b627f6f28edee930e8abc157e84386
Affected packages
- Linux / Linux< c854ab481ece4b3e5f4c2e8b22824f015ff874a5 (from 433042a91f9373241307725b52de573933ffedbf) · < 1d731e512134495e0ef490ade0e4d91dc0d515ec (from 4f1fffa2376922f3d1d506e49c0fd445b023a28e) · < 7c9ce68192eef14c777cb6ce17155d2eb2431aea (from 4f1fffa2376922f3d1d506e49c0fd445b023a28e) · < c99e160938b627f6f28edee930e8abc157e84386 (from 4f1fffa2376922f3d1d506e49c0fd445b023a28e) · < 14f66f44646333d2bfd7ece36585874fd72f8286 (from 4f1fffa2376922f3d1d506e49c0fd445b023a28e) · < 6.6.128 (from 6.6.32)
- Linux / Linux6.8Fixed in 0, 6.6.128, 6.12.75, 6.18.16, 6.19.6, 7.0
CVSS Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H