Linux Kernel Vulnerability in io_uring Poll Feature
CVE-2026-52933

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 24 June 2026

What is CVE-2026-52933?

A vulnerability in the Linux kernel's io_uring poll feature exposes the system to potential issues due to improper signed comparisons during ownership retrieval. The function io_poll_get_ownership() inaccurately checks the value of poll_refs, which can lead to unexpected behavior when cancel flags are set. By casting the atomic read result to an unsigned integer, the issue can be rectified, ensuring that the correct logic is applied even in edge cases.

Affected Version(s)

Linux a26a35e9019fd70bf3cf647dcfdae87abc7bacea < 81bf96b0abbfa4cd47ea32e12596aed3855fb2f3

Linux a26a35e9019fd70bf3cf647dcfdae87abc7bacea

References

https://git.kernel.org/stable/c/81bf96b0abbfa4cd47ea32e12...

https://git.kernel.org/stable/c/cf522703d4f19499161576369...

https://git.kernel.org/stable/c/fc47043f3d9af3efa407665b4...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 24, 2026
Vulnerability Reserved
Jun 9, 2026

CVE-2026-52933 Data

JSON