CVE-2026-22983

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A flaw exists in the Linux kernel related to handling of msg get inq within the networking subsystem. The issue involves a potential NULL pointer dereference when writing to msg get inq in the callee function. Specifically, the vulnerability arises because the caller may not clear msg get inq upon struct reuse, leading to a potential dereference of a NULL pointer. This can occur during splicing operations with af unix sockets. The fix avoids writing to msg get inq in the callee, enhancing robustness and simplifying the code. The issue is a kernel-internal variant of msghdr and is not considered critical, but the fix addresses a bug and prevents a potential NULL pointer dereference in unix stream read generic when state->msg is NULL and msg->msg get inq is written.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.