CVE-2026-46214
Published: May 28, 2026
Modified: Jun 1, 2026
Description
In the Linux kernel, the following vulnerability has been resolved: vsock/virtio: fix accept queue count leak on transport mismatch virtio_transport_recv_listen() calls sk_acceptq_added() before vsock_assign_transport(). If vsock_assign_transport() fails or selects a different transport, the error path returns without calling sk_acceptq_removed(), permanently incrementing sk_ack_backlog. After approximately backlog+1 such failures, sk_acceptq_is_full() returns true, causing the listener to reject all new connections. Fix by moving sk_acceptq_added() to after the transport validation, matching the pattern used by vmci_transport and hyperv_transport.
| Vendor | Product | Versions |
|---|---|---|
Linux | Linux | affected c0cfa2d8a788fcf45df5bf4070ab2474c88d543a - < 2ea5d2c79edcc99c7dbe0bb7518f5e1ee2a2391faffected c0cfa2d8a788fcf45df5bf4070ab2474c88d543a - < fd51e810affa38d735d04261e673b2a5fe9c8665affected c0cfa2d8a788fcf45df5bf4070ab2474c88d543a - < f66c7904fb6f0e420a654bc90909e64a25d00896affected c0cfa2d8a788fcf45df5bf4070ab2474c88d543a - < 65c484726e74013a2ec7ba67a34d87760ae8f390affected c0cfa2d8a788fcf45df5bf4070ab2474c88d543a - < 29371f3cc83e2a92265b4768014a30b80234112f+3 more versions |
Linux | Linux | affected 5.5unaffected 0 - < 5.5unaffected 5.10.258 - <= 5.10.*unaffected 5.15.209 - <= 5.15.*unaffected 6.1.175 - <= 6.1.*+5 more versions |
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now