VDB
CVE-2026-31451
CVE-2026-31451
PUBLISHED
In the Linux kernel, the following vulnerability has been resolved: ext4: replace BUG_ON with proper error handling in ext4_read_inline_folio Replace BUG_ON() with proper error handling when inline data size exceeds PAGE_SIZE. This prevents kernel panic and allows the system to continue running while properly reporting the filesystem corruption. The error is logged via ext4_error_inode(), the buffer head is released to prevent memory leak, and -EFSCORRUPTED is returned to indicate filesystem corruption.
EPSS 0.02% · 3.4th percentile
Risk Scores
EPSS Score
0.02%
3.4th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| linux | linux_kernel | 0, 0, 0 |
| Linux | Linux | 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2, 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2, 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 |
Timeline
- Apr 22, 2026 CVE Published
- Apr 23, 2026 Security Advisory
- May 6, 2026 CVE Updated
- May 18, 2026 EPSS Score
- May 19, 2026 EPSS Score
- May 20, 2026 EPSS Score
- May 21, 2026 EPSS Score
- May 22, 2026 EPSS Score
- May 23, 2026 EPSS Score
- May 24, 2026 EPSS Score
- May 25, 2026 EPSS Score
- May 26, 2026 EPSS Score
References
- https://git.kernel.org/stable/c/65c6c30ce6362c1c684568744ea510c921a756cd url
- https://git.kernel.org/stable/c/d4b3f370c3d8f7ce565d4a718572c9f7c12f77ed url
- https://git.kernel.org/stable/c/823849a26af089ffc5dfdd2ae4b9d446b46a0cda url
- https://git.kernel.org/stable/c/a7d600e04732a7d29b107c91fe3aec64cf6ce7f2 url
- https://git.kernel.org/stable/c/356227096eb66e41b23caf7045e6304877322edf url
- https://nvd.nist.gov/vuln/detail/CVE-2026-31451 advisory
- https://lists.debian.org/debian-security-announce/2026/msg00154.html advisory
- https://lists.debian.org/debian-security-announce/2026/msg00148.html advisory