In the Linux kernel, the following vulnerability has been resolved:
afunix: Set gcinprogress to true in unixgc().
Igor Ushakov reported that unixgc() could run with gcin_progress being false if the work is scheduled while running:
Thread 1 Thread 2 Thread 3
-------- -------- --------
unixschedulegc() unixschedulegc()
- if (!gc_in_progress)- if (!gcinprogress)
|- gcinprogress = true |
- queue_work() |
unix_gc() <----------------/ |
| |- gc_in_progress = true
...- queuework()
| |
- gc_in_progress = false |
|
unix_gc() <---------------------------------------------'
|
... /* gc_in_progress == false */
|
- gcin_progress = false
unixpeekfpl() relies on gcinprogress not to confuse GC by MSG_PEEK.
Let's set gcinprogress to true in unix_gc().
{
"osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/53xxx/CVE-2026-53361.json",
"cna_assigner": "Linux"
}