Linux Kernel Vulnerability in SysV IPC ID Allocation
CVE-2026-52923

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 24 June 2026

What is CVE-2026-52923?

A vulnerability exists in the Linux kernel's SysV IPC ID allocation process. When utilizing the checkpoint/restore sysctl path, requests can exceed valid limits, leading to improper allocation of IPC IDs. This misallocation results in dangling pointers and potential memory corruption, as later attempts to remove these entries may inadvertently target incorrect memory locations. Specifically, when the valid SysV IPC tail is filled, new allocations can occur beyond the designated range, causing inconsistencies. To mitigate this vulnerability, it's vital to bound allocation requests to the valid IPC ID range, preventing spills that compromise system integrity.

Affected Version(s)

Linux 03f595668017f1a1fb971c02fc37140bc6e7bb1c < 3bbe2bb9111ce6967a951bfac79af142d816fae5

Linux 03f595668017f1a1fb971c02fc37140bc6e7bb1c < 8c58a92849175f5e2ab7bc2734b3b89afe79f6ef

Linux 03f595668017f1a1fb971c02fc37140bc6e7bb1c

References

https://git.kernel.org/stable/c/3bbe2bb9111ce6967a951bfac...

https://git.kernel.org/stable/c/8c58a92849175f5e2ab7bc273...

https://git.kernel.org/stable/c/af24e202b543ded8a34f1d5d3...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 24, 2026
Vulnerability Reserved
Jun 9, 2026

CVE-2026-52923 Data

JSON