CVE-2026-52935 is a Linux kernel vulnerability disclosed through Microsoft’s Security Update Guide in late June 2026, affecting the XFRM subsystem’s ESP-in-TCP path where an unfinished partial send can be reused and trigger an out-of-bounds read in kernel networking code. The bug is not a...