CVE-2026-31693

EUVD-2026-26367
In the Linux kernel, the following vulnerability has been resolved:

cifs: some missing initializations on replay

In several places in the code, we have a label to signify
the start of the code where a request can be replayed if
necessary. However, some of these places were missing the
necessary reinitializations of certain local variables
before replay.

This change makes sure that these variables get initialized
after the label.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
UNKNOWN
---
Awaiting analysis
This vulnerability is currently awaiting analysis.
Base Score
CVSS 3.x
EPSS Score
Percentile: Unknown
Debian logo
Debian Releases
Debian Product
Codename
linux
bookworm
vulnerable
bookworm (security)
vulnerable
bullseye
vulnerable
bullseye (security)
vulnerable
forky
6.19.13-1
fixed
sid
6.19.14-1
fixed
trixie
vulnerable
trixie (security)
6.12.85-1
fixed
References
https://git.kernel.org/stable/c/14f66f44646333d2bfd7ece36585874fd72f8286
https://git.kernel.org/stable/c/1d731e512134495e0ef490ade0e4d91dc0d515ec
https://git.kernel.org/stable/c/7c9ce68192eef14c777cb6ce17155d2eb2431aea
https://git.kernel.org/stable/c/c854ab481ece4b3e5f4c2e8b22824f015ff874a5
https://git.kernel.org/stable/c/c99e160938b627f6f28edee930e8abc157e84386