CVE-2026-31673

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description An issue exists in the af unix module where exact UNIX diag lookups hold a reference to the socket but not to u->path. The unix release sock() function clears u->path under the unix state lock() and drops the path reference after unlocking, which can lead to instability when reading UNIX DIAG VFS data.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.