CVE-2026-31478

*** Pendiente de traducción *** In the Linux kernel, the following vulnerability has been resolved:<br /> <br /> ksmbd: replace hardcoded hdr2_len with offsetof() in smb2_calc_max_out_buf_len()<br /> <br /> After this commit (e2b76ab8b5c9 "ksmbd: add support for read compound"),<br /> response buffer management was changed to use dynamic iov array.<br /> In the new design, smb2_calc_max_out_buf_len() expects the second<br /> argument (hdr2_len) to be the offset of -&gt;Buffer field in the<br /> response structure, not a hardcoded magic number.<br /> Fix the remaining call sites to use the correct offsetof() value.