← voltar
CVE-2026-45887

af_unix: Fix memleak of newsk in unix_stream_connect().

EPSS 0.2%
In the Linux kernel, the following vulnerability has been resolved: af_unix: Fix memleak of newsk in unix_stream_connect(). When prepare_peercred() fails in unix_stream_connect(), unix_release_sock() is not called for newsk, and the memory is leaked. Let's move prepare_peercred() before unix_create1().
Produtos afetados
Linux · Linux

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
https://git.kernel.org/stable/c/365996a2b14d07caa9e33d367b67ea26c09d89b4https://git.kernel.org/stable/c/6884028cd7f275f8bcb854a347265cb1fb0e4beahttps://git.kernel.org/stable/c/a5d95d7caba0160fb7b2b8d2bd96d5a1be861d9f