Linux Kernel Vulnerability in AF_UNIX Networking Support
CVE-2026-52928

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 24 June 2026

What is CVE-2026-52928?

A vulnerability within the Linux kernel's AF_UNIX networking implementation allows for improper handling of SIOCATMARK on non-stream sockets. This issue arises because SIOCATMARK is designed to ascertain if the receive queue is at an urgent mark for the MSG_OOB option, which is only applicable to SOCK_STREAM sockets. Currently, SOCK_DGRAM and SOCK_SEQPACKET reject MSG_OOB in their sendmsg() and recvmsg() functions, creating a scenario where SIOCATMARK should not be supported for these socket types. The resolution necessitates returning -EOPNOTSUPP for non-stream sockets prior to checking the receive queue, thereby improving the kernel’s reliability and security.

Affected Version(s)

Linux 314001f0bf927015e459c9d387d62a231fe93af3 < 645b1ed3259af38b7814242a420bc2081bdd1eb6

Linux 314001f0bf927015e459c9d387d62a231fe93af3

Linux 314001f0bf927015e459c9d387d62a231fe93af3 < 3147ddf5a41c20c45c2eb69e00b62f10f822056a

References

https://git.kernel.org/stable/c/645b1ed3259af38b7814242a4...

https://git.kernel.org/stable/c/c34c41446acf6c0d13b5b06c8...

https://git.kernel.org/stable/c/3147ddf5a41c20c45c2eb69e0...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 24, 2026
Vulnerability Reserved
Jun 9, 2026

CVE-2026-52928 Data

JSON