CVE-2026-45887
N/A
N/A
Summary
In the Linux kernel, the following vulnerability has been resolved:
af_unix: Fix memleak of newsk in unix_stream_connect().
When prepare_peercred() fails in unix_stream_connect(), unix_release_sock() is not called for newsk, and the memory is leaked.
Let's move prepare_peercred() before unix_create1().
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Linux | Linux | fd0a109a0f6b7524543d17520da92a44a9f5343c < 365996a2b14d07caa9e33d367b67ea26c09d89b4 | affected |
| Linux | Linux | fd0a109a0f6b7524543d17520da92a44a9f5343c < a5d95d7caba0160fb7b2b8d2bd96d5a1be861d9f | affected |
| Linux | Linux | fd0a109a0f6b7524543d17520da92a44a9f5343c < 6884028cd7f275f8bcb854a347265cb1fb0e4bea | affected |
| Linux | Linux | 6.16 | affected |
| Linux | Linux | 0 < 6.16 | unaffected |
| Linux | Linux | 6.18.14 <= 6.18.* | unaffected |
| Linux | Linux | 6.19.4 <= 6.19.* | unaffected |
| Linux | Linux | 7.0 <= * | unaffected |
Weaknesses
References
- https://git.kernel.org/stable/c/365996a2b14d07caa9e33d367b67ea26c09d89b4
- https://git.kernel.org/stable/c/a5d95d7caba0160fb7b2b8d2bd96d5a1be861d9f
- https://git.kernel.org/stable/c/6884028cd7f275f8bcb854a347265cb1fb0e4bea
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.