Usercopy Vulnerability in Linux Kernel Affecting Network Socket Handling
CVE-2026-22977

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 21 January 2026

What is CVE-2026-22977?

A vulnerability exists in the Linux kernel related to improper handling of usercopy operations in socket error queues. Specifically, this flaw arises when sk_buff structures allocated from skbuff_fclone_cache are manipulated without a defined usercopy region, leading to potential kernel memory exposure during error handling. When a user attempts to read from the socket error queue, accessing certain fields can trigger a usercopy hardening violation, causing the kernel to crash. This issue is particularly pertinent when CONFIG_HARDENED_USERCOPY is enabled, emphasizing the need for immediate attention and mitigation strategies to safeguard against potential exploitation in network operations.

Affected Version(s)

Linux 6d07d1cd300f4c7e16005f881fea388164999cc8 < 88dd6be7ebb3153b662c2cebcb06e032a92857f5

Linux 6d07d1cd300f4c7e16005f881fea388164999cc8

Linux 6d07d1cd300f4c7e16005f881fea388164999cc8 < 8c6901aa29626e35045130bac09b75f791acca85

References

https://git.kernel.org/stable/c/88dd6be7ebb3153b662c2cebc...

https://git.kernel.org/stable/c/c655d2167bf014d4c61b4faec...

https://git.kernel.org/stable/c/8c6901aa29626e35045130bac...

Timeline

Vulnerability published
Jan 21, 2026
Vulnerability Reserved
Jan 13, 2026

JSON