PT-2026-44337 · Linux · Linux Kernel
Published
2026-05-28
·
Updated
2026-07-08
·
CVE-2026-46214
CVSS v3.1
5.5
Medium
| Vector | AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H |
Name of the Vulnerable Software and Affected Versions
Linux kernel (affected versions not specified)
Description
A resource leak occurs in the vsock/virtio component of the Linux kernel due to a transport mismatch. The function
virtio transport recv listen() invokes sk acceptq added() before vsock assign transport(). If vsock assign transport() fails or selects an alternative transport, the error path returns without calling sk acceptq removed(), which leads to a permanent increment of the sk ack backlog variable. Once the number of failures exceeds the backlog limit, sk acceptq is full() returns true, causing the listener to reject all subsequent new connections.Recommendations
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Exploit
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Linux Kernel