Use-After-Free Vulnerability in Linux Kernel SCTP Implementation
CVE-2026-52924

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 24 June 2026

What is CVE-2026-52924?

A use-after-free vulnerability has been identified in the Stream Control Transmission Protocol (SCTP) implementation of the Linux kernel. This issue occurs when a Stale Cookie ERROR is received, leading to a rollback of the association from COOKIE_ECHOED to COOKIE_WAIT. In this scenario, user data may already be queued alongside the COOKIE-ECHO chunk. When sctp_stream_update() is called during this process, it does not invalidate stream pointers properly, allowing access to freed memory. Consequently, this can result in crashes as seen in various applications. To rectify this vulnerability, it is crucial to completely purge the association's outqueue when handling Stale Cookie cases, ensuring that all pending transmissions are secured and the memory state is correctly managed.

Affected Version(s)

Linux 5bbbbe32a43199c2b9ea5ea66fab6241c64beb51 < 84b7a319105db2f917ccdcf502bdc866082b1285

Linux 5bbbbe32a43199c2b9ea5ea66fab6241c64beb51

Linux 5bbbbe32a43199c2b9ea5ea66fab6241c64beb51 < 3c0741a441a7df7099d7ca6a64a6a0de09c677c8

References

https://git.kernel.org/stable/c/84b7a319105db2f917ccdcf50...

https://git.kernel.org/stable/c/f46e1d1a758878f0d22c4fbbd...

https://git.kernel.org/stable/c/3c0741a441a7df7099d7ca6a6...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 24, 2026
Vulnerability Reserved
Jun 9, 2026

CVE-2026-52924 Data

JSON