Memory-Safety Flaw in Linux Kernel Affecting Transmission Processes
CVE-2026-52935

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 24 June 2026

What is CVE-2026-52935?

A memory-safety vulnerability in the Linux kernel affects the espintcp transmission process. The issue arises due to improper handling of in-progress partial sends. When a new send message is initiated while a previous partial send is still ongoing, this can potentially lead to an out-of-bounds read. The proposed solution involves ensuring that espintcp does not attempt to rebuild a send message while a partial send is still active, thereby preserving the integrity of the transmission state and preventing memory safety issues.

Affected Version(s)

Linux e27cca96cd68fa2c6814c90f9a1cfd36bb68c593 < 6564e9c7af7e1dc7bfe7f3093b728abe484d7630

Linux e27cca96cd68fa2c6814c90f9a1cfd36bb68c593 < 1777ceac4bea5e568a5ad44b7f9bb219c1db21b6

Linux e27cca96cd68fa2c6814c90f9a1cfd36bb68c593 < 8c6c691bf062dc0753a139a4ab8cb92a70fcf8f3

References

https://git.kernel.org/stable/c/6564e9c7af7e1dc7bfe7f3093...

https://git.kernel.org/stable/c/1777ceac4bea5e568a5ad44b7...

https://git.kernel.org/stable/c/8c6c691bf062dc0753a139a4a...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 24, 2026
Vulnerability Reserved
Jun 9, 2026

CVE-2026-52935 Data

JSON