CVE-2026-31710

MEDIUM

smb: client: fix dir separator in SMB1 UNIX mounts

Title source: cna

Description

In the Linux kernel, the following vulnerability has been resolved: smb: client: fix dir separator in SMB1 UNIX mounts When calling cifs_mount_get_tcon() with SMB1 UNIX mounts, @cifs_sb->mnt_cifs_flags needs to be read or updated only after calling reset_cifs_unix_caps(), otherwise it might end up with missing CIFS_MOUNT_POSIXACL and CIFS_MOUNT_POSIX_PATHS bits. This fixes the wrong dir separator used in paths caused by the missing CIFS_MOUNT_POSIX_PATHS bit in cifs_sb_info::mnt_cifs_flags.

References (2)

Core 2

Core References

https://git.kernel.org/stable/c/fbbfcf35e1ee3396631f3dc6214cb626aa9814c3

https://git.kernel.org/stable/c/c4d3fc5844d685441befd0caaab648321013cdfd

Scores

CVSS v3 5.5

EPSS 0.0001

EPSS Percentile 3.1%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Details

Status published

Products (8)

Linux/Linux < 7.0

Linux/Linux 4fc3a433c13944ee5766ec5b9bf6f1eb4d29b880 - c4d3fc5844d685441befd0caaab648321013cdfd

Linux/Linux 4fc3a433c13944ee5766ec5b9bf6f1eb4d29b880 - fbbfcf35e1ee3396631f3dc6214cb626aa9814c3

Linux/Linux 7.0

Linux/Linux 7.0.2 - 7.0.*

Linux/Linux 7.1-rc1

linux/linux_kernel 7.0 (7 CPE variants)

linux/linux_kernel 7.0.1 - 7.0.2

Published May 01, 2026

Tracked Since May 01, 2026