CVE-2026-45887 - Vulnerability Details - OpenCVE

In the Linux kernel, the following vulnerability has been resolved: af_unix: Fix memleak of newsk in unix_stream_connect(). When prepare_peercred() fails in unix_stream_connect(), unix_release_sock() is not called for newsk, and the memory is leaked. Let's move prepare_peercred() before unix_create1().

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

No EPSS score available.

Key SSVC decision points have not yet been added.

Vendors	Products
Linux	Linux Kernel

No data.

No data.

No data.

References

Link	Providers
https://git.kernel.org/stable/c/365996a2b14d07caa9e33d367b67ea26c09d89b4
https://git.kernel.org/stable/c/6884028cd7f275f8bcb854a347265cb1fb0e4bea
https://git.kernel.org/stable/c/a5d95d7caba0160fb7b2b8d2bd96d5a1be861d9f

History

Wed, 27 May 2026 14:15:00 +0000

Type	Values Removed	Values Added
Description		In the Linux kernel, the following vulnerability has been resolved: af_unix: Fix memleak of newsk in unix_stream_connect(). When prepare_peercred() fails in unix_stream_connect(), unix_release_sock() is not called for newsk, and the memory is leaked. Let's move prepare_peercred() before unix_create1().
Title		af_unix: Fix memleak of newsk in unix_stream_connect().
First Time appeared		Linux Linux linux Kernel
CPEs		cpe:2.3:o:linux:linux_kernel::::::::
Vendors & Products		Linux Linux linux Kernel
References		https://git.kernel.org/stable/c/365996a2b14d07caa9e33d367b67ea26c09d89b4 https://git.kernel.org/stable/c/6884028cd7f275f8bcb854a347265cb1fb0e4bea https://git.kernel.org/stable/c/a5d95d7caba0160fb7b2b8d2bd96d5a1be861d9f

MITRE

Status: PUBLISHED

Assigner: Linux

Published: 2026-05-27T12:16:58.720Z

Updated: 2026-05-27T12:16:58.720Z

Reserved: 2026-05-13T15:03:33.082Z

Link: CVE-2026-45887

Vulnrichment

No data.

NVD

Status : Awaiting Analysis

Published: 2026-05-27T14:17:02.713

Modified: 2026-05-27T14:48:31.480

Link: CVE-2026-45887

Redhat

No data.

OpenCVE Enrichment

No data.

{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2026-45887", "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "state": "PUBLISHED", "assignerShortName": "Linux", "dateReserved": "2026-05-13T15:03:33.082Z", "datePublished": "2026-05-27T12:16:58.720Z", "dateUpdated": "2026-05-27T12:16:58.720Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "shortName": "Linux", "dateUpdated": "2026-05-27T12:16:58.720Z"}, "descriptions": [{"lang": "en", "value": "In the Linux kernel, the following vulnerability has been resolved:\n\naf_unix: Fix memleak of newsk in unix_stream_connect().\n\nWhen prepare_peercred() fails in unix_stream_connect(),\nunix_release_sock() is not called for newsk, and the memory\nis leaked.\n\nLet's move prepare_peercred() before unix_create1()."}], "affected": [{"product": "Linux", "vendor": "Linux", "defaultStatus": "unaffected", "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git", "programFiles": ["net/unix/af_unix.c"], "versions": [{"version": "fd0a109a0f6b7524543d17520da92a44a9f5343c", "lessThan": "365996a2b14d07caa9e33d367b67ea26c09d89b4", "status": "affected", "versionType": "git"}, {"version": "fd0a109a0f6b7524543d17520da92a44a9f5343c", "lessThan": "a5d95d7caba0160fb7b2b8d2bd96d5a1be861d9f", "status": "affected", "versionType": "git"}, {"version": "fd0a109a0f6b7524543d17520da92a44a9f5343c", "lessThan": "6884028cd7f275f8bcb854a347265cb1fb0e4bea", "status": "affected", "versionType": "git"}]}, {"product": "Linux", "vendor": "Linux", "defaultStatus": "affected", "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git", "programFiles": ["net/unix/af_unix.c"], "versions": [{"version": "6.16", "status": "affected"}, {"version": "0", "lessThan": "6.16", "status": "unaffected", "versionType": "semver"}, {"version": "6.18.14", "lessThanOrEqual": "6.18.*", "status": "unaffected", "versionType": "semver"}, {"version": "6.19.4", "lessThanOrEqual": "6.19.*", "status": "unaffected", "versionType": "semver"}, {"version": "7.0", "lessThanOrEqual": "*", "status": "unaffected", "versionType": "original_commit_for_fix"}]}], "cpeApplicability": [{"nodes": [{"operator": "OR", "negate": false, "cpeMatch": [{"vulnerable": true, "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "versionStartIncluding": "6.16", "versionEndExcluding": "6.18.14"}, {"vulnerable": true, "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "versionStartIncluding": "6.16", "versionEndExcluding": "6.19.4"}, {"vulnerable": true, "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "versionStartIncluding": "6.16", "versionEndExcluding": "7.0"}]}]}], "references": [{"url": "https://git.kernel.org/stable/c/365996a2b14d07caa9e33d367b67ea26c09d89b4"}, {"url": "https://git.kernel.org/stable/c/a5d95d7caba0160fb7b2b8d2bd96d5a1be861d9f"}, {"url": "https://git.kernel.org/stable/c/6884028cd7f275f8bcb854a347265cb1fb0e4bea"}], "title": "af_unix: Fix memleak of newsk in unix_stream_connect().", "x_generator": {"engine": "bippy-1.2.0"}}}}