Linux Kernel CIFS Replay Variable Init Flaw
CVE-2026-31693 Published on April 30, 2026
cifs: some missing initializations on replay
In the Linux kernel, the following vulnerability has been resolved:
cifs: some missing initializations on replay
In several places in the code, we have a label to signify
the start of the code where a request can be replayed if
necessary. However, some of these places were missing the
necessary reinitializations of certain local variables
before replay.
This change makes sure that these variables get initialized
after the label.
Products Associated with CVE-2026-31693
Want to know whenever a new CVE is published for Linux Kernel? stack.watch will email you.
Affected Versions
Linux:- Version 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 and below c854ab481ece4b3e5f4c2e8b22824f015ff874a5 is affected.
- Version 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 and below 1d731e512134495e0ef490ade0e4d91dc0d515ec is affected.
- Version 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 and below 7c9ce68192eef14c777cb6ce17155d2eb2431aea is affected.
- Version 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 and below c99e160938b627f6f28edee930e8abc157e84386 is affected.
- Version 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 and below 14f66f44646333d2bfd7ece36585874fd72f8286 is affected.
- Version 6.6.128, <= 6.6.* is unaffected.
- Version 6.12.75, <= 6.12.* is unaffected.
- Version 6.18.16, <= 6.18.* is unaffected.
- Version 6.19.6, <= 6.19.* is unaffected.
- Version 7.0, <= * is unaffected.