Copyright © 2012 Red Hat, Inc. All rights reserved. 2026-04-24T00:00:00 kernel: smb: server: avoid double-free in smb_direct_free_sendmsg after smb_direct_flush_send_list() CWE-1341

In the Linux kernel, the following vulnerability has been resolved: smb: server: avoid double-free in smb_direct_free_sendmsg after smb_direct_flush_send_list() smb_direct_flush_send_list() already calls smb_direct_free_sendmsg(), so we should not call it again after post_sendmsg() moved it to the batch list.

A flaw was found in the Linux kernel's Server Message Block (SMB) server component. This vulnerability, a double-free error, occurs when the `smb_direct_free_sendmsg` function is called redundantly after `smb_direct_flush_send_list()` has already executed it. A remote attacker could potentially exploit this flaw, leading to memory corruption and a denial of service (DoS) on the affected system.

Red Hat Enterprise Linux 10 Not affected kernel Red Hat Enterprise Linux 6 Not affected kernel Red Hat Enterprise Linux 7 Not affected kernel Red Hat Enterprise Linux 7 Not affected kernel-rt Red Hat Enterprise Linux 8 Not affected kernel Red Hat Enterprise Linux 8 Not affected kernel-rt Red Hat Enterprise Linux 9 Not affected kernel Red Hat Enterprise Linux 9 Not affected kernel-rt https://www.cve.org/CVERecord?id=CVE-2026-31608 https://nvd.nist.gov/vuln/detail/CVE-2026-31608 https://lore.kernel.org/linux-cve-announce/2026042421-CVE-2026-31608-1786@gregkh/T