HOMEVULNERABILITIESCVE-2026-53035
NONE

CVE-2026-53035

Published: June 24, 2026· Updated: Jun 24, 2026

EPSS:0.17%probability of exploitation in 30 daysPercentile:6.9th

Official Description

In the Linux kernel, the following vulnerability has been resolved:

bpf, sockmap: Fix af_unix iter deadlock

bpf_iter_unix_seq_show() may deadlock when lock_sock_fast() takes the fast

path and the iter prog attempts to update a sockmap. Which ends up spinning

at sock_map_update_elem()'s bh_lock_sock():

WARNING: possible recursive locking detected

test_progs/1393 is trying to acquire lock:

ffff88811ec25f58 (slock-AF_UNIX){+...}-{3:3}, at: sock_map_update_elem+0xdb/0x1f0

but task is already holding lock:

ffff88811ec25f58 (slock-AF_UNIX){+...}-{3:3}, at: __lock_sock_fast+0x37/0xe0

other info that might help us debug this:

Possible unsafe locking scenario:

CPU0

----

lock(slock-AF_UNIX);

lock(slock-AF_UNIX);

*** DEADLOCK ***

May be due to missing lock nesting notation

4 locks held by test_progs/1393:

#0: ffff88814b59c790 (&p->lock){+.+.}-{4:4}, at: bpf_seq_read+0x59/0x10d0

#1: ffff88811ec25fd8 (sk_lock-AF_UNIX){+.+.}-{0:0}, at: bpf_seq_read+0x42c/0x10d0

#2: ffff88811ec25f58 (slock-AF_UNIX){+...}-{3:3}, at: __lock_sock_fast+0x37/0xe0

#3: ffffffff85a6a7c0 (rcu_read_lock){....}-{1:3}, at: bpf_iter_run_prog+0x51d/0xb00

Call Trace:

dump_stack_lvl+0x5d/0x80

print_deadlock_bug.cold+0xc0/0xce

__lock_acquire+0x130f/0x2590

lock_acquire+0x14e/0x2b0

_raw_spin_lock+0x30/0x40

sock_map_update_elem+0xdb/0x1f0

bpf_prog_2d0075e5d9b721cd_dump_unix+0x55/0x4f4

bpf_iter_run_prog+0x5b9/0xb00

bpf_iter_unix_seq_show+0x1f7/0x2e0

bpf_seq_read+0x42c/0x10d0

vfs_read+0x171/0xb20

ksys_read+0xff/0x200

do_syscall_64+0x6b/0x3a0

entry_SYSCALL_64_after_hwframe+0x76/0x7e

NVD Source

Technical Analysis

CVE-2026-53035 requires local access, meaning attackers must already have a foothold on the target system.

Exploitation requires some privileges, which limits the exposure to scenarios where an attacker has already gained initial access.

Affected Vendors & Products

Mentioned vendors (from description):
Linux
CPE data not yet available in NVD for this CVE.

Exploit & PoC Resources

NO KNOWN EXPLOITNo public exploit confirmed at this time
External links open in a new tab. Always verify in a controlled environment before use.

All References (6)

Quick Facts

CVE IDCVE-2026-53035
SeverityNONE
CISA KEVNo
EPSS (30d)0.17%
PublishedJun 24, 2026

Recommended Actions

  • Apply vendor patches immediately
  • Monitor CVE-2026-53035 in threat intel feeds
  • Review IDS/IPS signatures for exploitation attempts
Data sourced from NVD (NIST), CISA KEV, and EPSS (FIRST). Analysis generated by CTIWATCH.COM. CVE data is provided under the NVD usage policy.