Volerion logoVolerion
Volerion logoVolerion

Linux Kernel NULL Pointer Dereference Vulnerability in af_unix Socket Handling

Vulnerability

A vulnerability in the Linux kernel's handling of af_unix sockets can lead to a NULL pointer dereference. This issue arises because the 'msg_get_inq' field, which is intended to be an input from the caller, is incorrectly set in the callee. If the caller does not clear this field before reusing the structure, it can result in a NULL pointer dereference. This vulnerability is present in the stable branch of the Linux kernel.

Impact

Exploitation of this vulnerability can cause a NULL pointer dereference, leading to a crash of the affected process or service.

Reproduction

The vulnerability can be reproduced by splicing data into a stream socket using the af_unix protocol, which can trigger the NULL pointer dereference when the 'msg_get_inq' field is not properly managed.

Remediation

Users can upgrade to the latest version of the Linux kernel where this vulnerability has been fixed.

Added: Jan 23, 2026, 4:33 PM
Updated: Jan 23, 2026, 4:33 PM

Vulnerability Rating

Custom Algorithm
spread
9.0
impact
2.5
exploitability
4.3
remediation
7.7
relevance
2.3
threat
4.8
urgency
2.9
incentive
0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.