CVE-2026-31717

Daily digests

The in-kernel SMB server (ksmbd) doesn't properly validate ownership of durable file handles when a client reconnects. An attacker on the network could hijack another user's file handle after reconnection, gaining access to files they shouldn't be able to touch. This only affects you if ksmbd is enabled; most environments use Samba in user space instead.

• Daily Digest · May 18, 2026

  PostgreSQL refint RCE + NGINX rewrite bypass