[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2026-31709":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-04T20:55:29.923Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":18,"aliases":19,"duplicate_of":9,"upstream":20,"downstream":21,"duplicates":38,"related":39,"reserved_at":9,"published_at":43,"modified_at":44,"state":45,"summary":46,"references_raw":55,"kevs":74,"epss":75,"epss_history":78,"metrics":184,"affected":192},"CVE-2026-31709","In the Linux kernel, the following vulnerability has been resolved:\n\nsmb: client: validate the whole DACL before rewriting it in cifsacl\n\nbuild_sec_desc() and id_mode_to_cifs_acl() derive a DACL pointer from a\nserver-supplied dacloffset and then use the incoming ACL to rebuild the\nchmod/chown security descriptor.\n\nThe original fix only checked that the struct smb_acl header fits before\nreading dacl_ptr->size or dacl_ptr->num_aces.  That avoids the immediate\nheader-field OOB read, but the rewrite helpers still walk ACEs based on\npdacl->num_aces with no structural validation of the incoming DACL body.\n\nA malicious server can return a truncated DACL that still contains a\nheader, claims one or more ACEs, and then drive\nreplace_sids_and_copy_aces() or set_chmod_dacl() past the validated\nextent while they compare or copy attacker-controlled ACEs.\n\nFactor the DACL structural checks into validate_dacl(), extend them to\nvalidate each ACE against the DACL bounds, and use the shared validator\nbefore the chmod/chown rebuild paths.  parse_dacl() reuses the same\nvalidator so the read-side parser and write-side rewrite paths agree on\nwhat constitutes a well-formed incoming DACL.",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":9,"likelihood_of_exploit":9,"capec":17},"NVD-CWE-NOINFO","Insufficient Information","NVD uses this CWE ID when there is insufficient information to assign a specific CWE.","placeholder","NVD-Reserved",[],[],[],[],[22,24,26,28,30,32,34,36],{"_key":23},"DEBIAN-CVE-2026-31709",{"_key":25},"OPENSUSE-SU-2026:10793-1",{"_key":27},"RHSA-2026:21556",{"_key":29},"RHSA-2026:21706",{"_key":31},"RHSA-2026:21745",{"_key":33},"RHSA-2026:22900",{"_key":35},"RHSA-2026:22940",{"_key":37},"UBUNTU-CVE-2026-31709",[],[40,41],{"_key":25},{"_key":42},"CGA-5F7R-PW69-5M2R","2026-05-01T13:56:06.522Z","2026-05-17T15:21:32.443Z","Modified",{"cisa_kev":47,"cisa_ransomware":47,"cisa_vendor":9,"epss_severity":48,"epss_score":49,"severity":50,"severity_score":51,"severity_version":52,"severity_source":53,"severity_vector":54,"severity_status":45},false,"low",0.00053,"high",8.8,"v3.1","cve.org","CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",[56,62,66,70],{"url":57,"sources":58,"tags":60},"https://git.kernel.org/stable/c/b78db9bddc84136f6a0bb49e8883cf200dfb87a8",[53,59],"nvd",[61],"Patch",{"url":63,"sources":64,"tags":65},"https://git.kernel.org/stable/c/0a8cf165566ba55a39fd0f4de172119dd646d39a",[53,59],[61],{"url":67,"sources":68,"tags":69},"https://git.kernel.org/stable/c/d92f3f0b22414e7515696a02224d0af55e3004a3",[53,59],[],{"url":71,"sources":72,"tags":73},"https://git.kernel.org/stable/c/8e47d297e7cf9a6029a0d38e7b22faba7d7aaf12",[53,59],[],[],{"date":76,"score":49,"percentile":77},"2026-06-04",0.16765,[79,83,87,90,93,96,100,103,106,109,112,115,118,121,124,127,130,134,137,140,143,147,150,153,156,159,162,165,168,171,174,177,180,183],{"date":80,"score":81,"percentile":82},"2026-05-02",0.00018,0.05005,{"date":84,"score":85,"percentile":86},"2026-05-03",0.00039,0.11591,{"date":88,"score":85,"percentile":89},"2026-05-04",0.1154,{"date":91,"score":85,"percentile":92},"2026-05-05",0.11538,{"date":94,"score":85,"percentile":95},"2026-05-06",0.11531,{"date":97,"score":98,"percentile":99},"2026-05-07",0.0004,0.12077,{"date":101,"score":98,"percentile":102},"2026-05-08",0.12091,{"date":104,"score":98,"percentile":105},"2026-05-09",0.12133,{"date":107,"score":98,"percentile":108},"2026-05-10",0.12122,{"date":110,"score":98,"percentile":111},"2026-05-11",0.12114,{"date":113,"score":98,"percentile":114},"2026-05-12",0.12139,{"date":116,"score":98,"percentile":117},"2026-05-13",0.12163,{"date":119,"score":98,"percentile":120},"2026-05-14",0.12206,{"date":122,"score":98,"percentile":123},"2026-05-15",0.12212,{"date":125,"score":98,"percentile":126},"2026-05-16",0.12252,{"date":128,"score":98,"percentile":129},"2026-05-17",0.12227,{"date":131,"score":132,"percentile":133},"2026-05-18",0.00041,0.12415,{"date":135,"score":132,"percentile":136},"2026-05-19",0.12392,{"date":138,"score":132,"percentile":139},"2026-05-20",0.12369,{"date":141,"score":132,"percentile":142},"2026-05-21",0.1235,{"date":144,"score":145,"percentile":146},"2026-05-22",0.00048,0.15155,{"date":148,"score":145,"percentile":149},"2026-05-23",0.15143,{"date":151,"score":145,"percentile":152},"2026-05-24",0.15099,{"date":154,"score":145,"percentile":155},"2026-05-25",0.15086,{"date":157,"score":145,"percentile":158},"2026-05-26",0.15082,{"date":160,"score":145,"percentile":161},"2026-05-27",0.15186,{"date":163,"score":145,"percentile":164},"2026-05-28",0.15327,{"date":166,"score":145,"percentile":167},"2026-05-29",0.15399,{"date":169,"score":145,"percentile":170},"2026-05-30",0.15387,{"date":172,"score":145,"percentile":173},"2026-05-31",0.15358,{"date":175,"score":145,"percentile":176},"2026-06-01",0.15346,{"date":178,"score":49,"percentile":179},"2026-06-02",0.16755,{"date":181,"score":49,"percentile":182},"2026-06-03",0.16746,{"date":76,"score":49,"percentile":77},[185,190],{"source":53,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":186,"cvss_v4_0":9},{"baseScore":51,"baseSeverity":187,"vectorString":54,"impactScore":188,"exploitabilityScore":189},"HIGH",9.8,7.2,{"source":59,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":191,"cvss_v4_0":9},{"baseScore":51,"baseSeverity":187,"vectorString":54,"impactScore":188,"exploitabilityScore":189},[193,216],{"ecosystem":9,"name":194,"vendor":195,"product":195,"cpe_part":196,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":197},"Linux","linux","a",[198,205,208,211,214],{"version":199,"is_range":200,"range_type":53,"version_start":201,"version_start_type":202,"version_end":203,"version_end_type":204,"fixed_in":9},">= bc3e9dd9d104ca1b75644eab87b38ce8a924aef4, \u003C 8e47d297e7cf9a6029a0d38e7b22faba7d7aaf12",true,"bc3e9dd9d104ca1b75644eab87b38ce8a924aef4","including","8e47d297e7cf9a6029a0d38e7b22faba7d7aaf12","excluding",{"version":206,"is_range":200,"range_type":53,"version_start":201,"version_start_type":202,"version_end":207,"version_end_type":204,"fixed_in":9},">= bc3e9dd9d104ca1b75644eab87b38ce8a924aef4, \u003C d92f3f0b22414e7515696a02224d0af55e3004a3","d92f3f0b22414e7515696a02224d0af55e3004a3",{"version":209,"is_range":200,"range_type":53,"version_start":201,"version_start_type":202,"version_end":210,"version_end_type":204,"fixed_in":9},">= bc3e9dd9d104ca1b75644eab87b38ce8a924aef4, \u003C b78db9bddc84136f6a0bb49e8883cf200dfb87a8","b78db9bddc84136f6a0bb49e8883cf200dfb87a8",{"version":212,"is_range":200,"range_type":53,"version_start":201,"version_start_type":202,"version_end":213,"version_end_type":204,"fixed_in":9},">= bc3e9dd9d104ca1b75644eab87b38ce8a924aef4, \u003C 0a8cf165566ba55a39fd0f4de172119dd646d39a","0a8cf165566ba55a39fd0f4de172119dd646d39a",{"version":215,"is_range":47,"range_type":53,"version_start":215,"version_start_type":202,"version_end":215,"version_end_type":202,"fixed_in":9},"5.12",{"ecosystem":9,"name":217,"vendor":195,"product":218,"cpe_part":219,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":220},"linux kernel","linux_kernel","o",[221],{"version":222,"is_range":200,"range_type":223,"version_start":215,"version_start_type":202,"version_end":224,"version_end_type":204,"fixed_in":9},"gte5.12_lt7.0.2","cpe","7.0.2"]