CVE-2026-46102
Published: May 27, 2026
Modified: Jun 1, 2026
CVSS v3.1
7.5
Description
In the Linux kernel, the following vulnerability has been resolved: net: strparser: fix skb_head leak in strp_abort_strp() When the stream parser is aborted, for example after a message assembly timeout, it can still hold a reference to a partially assembled message in strp->skb_head. That skb is not released in strp_abort_strp(), which leaks the partially assembled message and can be triggered repeatedly to exhaust memory. Fix this by freeing strp->skb_head and resetting the parser state in the abort path. Leave strp_stop() unchanged so final cleanup still happens in strp_done() after the work and timer have been synchronized.
| Vendor | Product | Versions |
|---|---|---|
Linux | Linux | affected 43a0c6751a322847cb6fa0ab8cbf77a1d08bfc0a - < d6668ce0e78d23eabecef9a6bc4f0f739cb28ad3affected 43a0c6751a322847cb6fa0ab8cbf77a1d08bfc0a - < a470ed71c906cc8cbad0d74c9942216698911f8baffected 43a0c6751a322847cb6fa0ab8cbf77a1d08bfc0a - < c2e57695ec9ff9d42f23de70f3805199153d007baffected 43a0c6751a322847cb6fa0ab8cbf77a1d08bfc0a - < e9ae00490d474757c0f9c65073de83e6bb1e5a00affected 43a0c6751a322847cb6fa0ab8cbf77a1d08bfc0a - < 5327dad2ffe9c1b49881dd6d51ff3c6893847568+3 more versions |
Linux | Linux | affected 4.9unaffected 0 - < 4.9unaffected 5.10.258 - <= 5.10.*unaffected 5.15.209 - <= 5.15.*unaffected 6.1.175 - <= 6.1.*+5 more versions |
CVSS v3.1 Details
CVSS v3.1 Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now