Upstream information
Description
In the Linux kernel, the following vulnerability has been resolved:io_uring/af_unix: defer registered files gc to io_uring release
Instead of putting io_uring's registered files in unix_gc() we want it
to be done by io_uring itself. The trick here is to consider io_uring
registered files for cycle detection but not actually putting them down.
Because io_uring can't register other ring instances, this will remove
all refs to the ring file triggering the ->release path and clean up
with io_ring_ctx_free().
[axboe: add kerneldoc comment to skb, fold in skb leak fix]
SUSE information
Overall state of this security issue: Does not affect SUSE products
SUSE Bugzilla entry: 1249664 [NEW] No SUSE Security Announcements cross referenced.SUSE Timeline for this CVE
CVE page created: Tue Sep 16 12:10:21 2025CVE page last modified: Tue Sep 16 12:10:21 2025