Description
In the Linux kernel, the following vulnerability has been resolved:

af_unix: Reject SIOCATMARK on non-stream sockets

SIOCATMARK reports whether the receive queue is at the urgent mark for
MSG_OOB.

In AF_UNIX, MSG_OOB is supported only for SOCK_STREAM sockets.
SOCK_DGRAM and SOCK_SEQPACKET reject MSG_OOB in sendmsg() and recvmsg(),
so they should not support SIOCATMARK either.

Return -EOPNOTSUPP for non-stream sockets before checking the receive
queue.
Published: 2026-06-24
Score: 5.5 Medium
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

The af_unix subsystem in the Linux kernel previously performed the SIOCATMARK ioctl on sockets that were not of type SOCK_STREAM. This ioctl reports whether the receive queue has reached the urgent mark for MSG_OOB data, a feature that is only supported for stream sockets. The kernel incorrectly allowed the ioctl to proceed on SOCK_DGRAM and SOCK_SEQPACKET sockets, potentially returning misleading information or causing unrelated kernel logic to react to the call. The applied patch adds a precheck that returns –EOPNOTSUPP for non‑stream sockets, aligning the behaviour with the existing rejection in sendmsg() and recvmsg() and preventing the ioctl from succeeding when it is undefined. The weakness is classified as CWE‑1287, representing improper kernel interface or misuse of system calls.

Affected Systems

All releases of the Linux kernel that contain the af_unix implementation before the patch are affected. The bug is present on every kernel version that has not yet integrated the change, regardless of distribution or version number. The patch is distributed through the official kernel source and is incorporated into subsequent kernel releases.

Risk and Exploitability

The CVSS score is 5.5. The issue is a defensive programming bug that resulted in returning an appropriate error code rather than exposing a memory or control‑flow vulnerability. No known exploitation methods exist, and the EPSS score is < 1%. The vulnerability is not listed in the CISA KEV catalog, indicating a low likelihood of real‑world exploitation. Based on the description, it is inferred that the likely attack vector is a local or unprivileged user intentionally calling SIOCATMARK on a non‑stream socket, which would simply result in an EOPNOTSUPP error rather than compromise.

Generated by OpenCVE AI on June 25, 2026 at 04:52 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade the kernel to a version that contains the af_unix patch
  • Modify applications to avoid calling SIOCATMARK on non‑stream AF_UNIX sockets or to handle the EOPNOTSUPP error appropriately
  • Review system logs for unexpected EOPNOTSUPP errors related to SIOCATMARK on non‑stream sockets to confirm correct behaviour

Generated by OpenCVE AI on June 25, 2026 at 04:52 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Sat, 04 Jul 2026 12:15:00 +0000


Thu, 25 Jun 2026 03:00:00 +0000

Type Values Removed Values Added
Weaknesses CWE-20

Thu, 25 Jun 2026 00:15:00 +0000

Type Values Removed Values Added
Weaknesses CWE-1287
References
Metrics threat_severity

None

cvssV3_1

{'score': 5.5, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H'}

threat_severity

Low


Wed, 24 Jun 2026 15:30:00 +0000

Type Values Removed Values Added
Weaknesses CWE-20

Wed, 24 Jun 2026 07:45:00 +0000

Type Values Removed Values Added
Description In the Linux kernel, the following vulnerability has been resolved: af_unix: Reject SIOCATMARK on non-stream sockets SIOCATMARK reports whether the receive queue is at the urgent mark for MSG_OOB. In AF_UNIX, MSG_OOB is supported only for SOCK_STREAM sockets. SOCK_DGRAM and SOCK_SEQPACKET reject MSG_OOB in sendmsg() and recvmsg(), so they should not support SIOCATMARK either. Return -EOPNOTSUPP for non-stream sockets before checking the receive queue.
Title af_unix: Reject SIOCATMARK on non-stream sockets
First Time appeared Linux
Linux linux Kernel
CPEs cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Vendors & Products Linux
Linux linux Kernel
References

Subscriptions

Linux Linux Kernel
cve-icon MITRE

Status: PUBLISHED

Assigner: Linux

Published:

Updated: 2026-07-04T11:50:47.159Z

Reserved: 2026-06-09T07:44:35.368Z

Link: CVE-2026-52928

cve-icon Vulnrichment

No data.

cve-icon NVD

No data.

cve-icon Redhat

Severity : Low

Publid Date: 2026-06-24T00:00:00Z

Links: CVE-2026-52928 - Bugzilla

cve-icon OpenCVE Enrichment

Updated: 2026-06-25T05:00:12Z

Weaknesses
  • CWE-1287

    Improper Validation of Specified Type of Input