CVE-2026-53361 PUBLISHED

af_unix: Set gc_in_progress to true in unix_gc().

Assigner: Linux
Reserved: 09.06.2026 Published: 04.07.2026 Updated: 04.07.2026

In the Linux kernel, the following vulnerability has been resolved:

af_unix: Set gc_in_progress to true in unix_gc().

Igor Ushakov reported that unix_gc() could run with gc_in_progress being false if the work is scheduled while running:

Thread 1 Thread 2 Thread 3 -------- -------- -------- unix_schedule_gc() unix_schedule_gc() - if (!gc_in_progress)- if (!gc_in_progress) |- gc_in_progress = true | - queue_work() | unix_gc() <----------------/ | | |- gc_in_progress = true ...- queue_work() | | - gc_in_progress = false | | unix_gc() <---------------------------------------------' | ... /* gc_in_progress == false */ |- gc_in_progress = false

unix_peek_fpl() relies on gc_in_progress not to confuse GC by MSG_PEEK.

Let's set gc_in_progress to true in unix_gc().

Product Status

Vendor Linux
Product Linux
Versions Default: unaffected
  • affected from 328840c93bd6a4871dd10908d01b41eab83eb8e2 to 82c17e13d404f686e164590483fd6c1abaa675d0 (excl.)
  • affected from 8b90a9f819dc2a06baae4ec1a64d875e53b824ec to 591f1ac217428a6d2b32a8ac14aac0fab44f155a (excl.)
  • affected from 8b90a9f819dc2a06baae4ec1a64d875e53b824ec to 0cfa78c050662784fc8e3ab26dbfd1dc632b2082 (excl.)
  • affected from 8b90a9f819dc2a06baae4ec1a64d875e53b824ec to d82ba05263c69fa2437fe93e4e561cc40f4c03af (excl.)
  • Version ceb8bd6c69c1680fd9b45e7f16d7170c9c7513a5 is affected
  • affected from 6.6.93 to 6.6.144 (excl.)
  • affected from 6.1.141 to 6.2 (excl.)
Vendor Linux
Product Linux
Versions Default: affected
  • Version 6.9 is affected
  • unaffected from 0 to 6.9 (excl.)
  • unaffected from 6.6.144 to 6.6.* (incl.)
  • unaffected from 6.12.95 to 6.12.* (incl.)
  • unaffected from 6.18.38 to 6.18.* (incl.)
  • unaffected from 7.1 to * (incl.)

References