Linux Kernel kSmbd FS_OBJECT_ID ID use of volume UUID flaw
CVE-2026-31410 Published on April 6, 2026
ksmbd: use volume UUID in FS_OBJECT_ID_INFORMATION
In the Linux kernel, the following vulnerability has been resolved:
ksmbd: use volume UUID in FS_OBJECT_ID_INFORMATION
Use sb->s_uuid for a proper volume identifier as the primary choice.
For filesystems that do not provide a UUID, fall back to stfs.f_fsid
obtained from vfs_statfs().
Products Associated with CVE-2026-31410
Want to know whenever a new CVE is published for Linux Kernel? stack.watch will email you.
Affected Versions
Linux:- Version 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 and below ce00616bc1df675bfdacc968f2bf7c51f4669227 is affected.
- Version 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 and below 3d80ebe6d1b7bc9ad20fd9b0c1a0c56d804f8a0a is affected.
- Version 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 and below c283a6ffe6d5d6e5594d991286b9ce15951572e1 is affected.
- Version 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 and below 3a64125730cabc34fccfbc230c2667c2e14f7308 is affected.
- Version 6.12.78, <= 6.12.* is unaffected.
- Version 6.18.20, <= 6.18.* is unaffected.
- Version 6.19.10, <= 6.19.* is unaffected.
- Version 7.0-rc5, <= * is unaffected.