CVE-2026-23083

HIGH EPSS 2.9%
Published Feb 4, 20264mo ago · Modified Jun 17, 20261w ago
7.8 CVSS 3.1
High
Find Similar
Published Feb 4, 2026 4mo ago
Last Modified Jun 17, 2026 1w ago

Description

In the Linux kernel, the following vulnerability has been resolved: fou: Don't allow 0 for FOU_ATTR_IPPROTO. fou_udp_recv() has the same problem mentioned in the previous patch. If FOU_ATTR_IPPROTO is set to 0, skb is not freed by fou_udp_recv() nor "resubmit"-ted in ip_protocol_deliver_rcu(). Let's forbid 0 for FOU_ATTR_IPPROTO.

CVSS Details

Base Score
7.8
Exploitability
1.8
Impact
5.9
Vector string
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Attack Vector Local
Attack Complexity Low
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality High
Integrity High
Availability High

Threat Intelligence

EPSS Exploit Probability
2.9% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Affected Products 12

VendorProductVersionRange
linuxlinux_kernel*≥3.18  –  <5.10.249
linuxlinux_kernel*≥5.11  –  <5.15.199
linuxlinux_kernel*≥5.16  –  <6.1.162
linuxlinux_kernel*≥6.2  –  <6.6.122
linuxlinux_kernel*≥6.7  –  <6.12.68
linuxlinux_kernel*≥6.13  –  <6.18.8
linuxlinux_kernel6.19any
linuxlinux_kernel6.19any
linuxlinux_kernel6.19any
linuxlinux_kernel6.19any
linuxlinux_kernel6.19any
linuxlinux_kernel6.19any

References 7

  • git.kernel.org https://git.kernel.org/stable/c/1cc98b8887cabb1808d2f4a37cd10a7be7574771
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/611ef4bd9c73d9e6d87bed57a635ff1fdd8c91ea
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/6e983789b7588ee59cbf303583546c043bad8e19
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/7a9bc9e3f42391e4c187e099263cf7a1c4b69ff5
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/9b75dff8446ec871030d8daf5a69e74f5fe8b956
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/b7db31a52c3862a1a32202a273a4c32e7f5f4823
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/c7498f9bc390479ccfad7c7f2332237ff4945b03
    Patch

Remediation

  • git.kernel.org https://git.kernel.org/stable/c/1cc98b8887cabb1808d2f4a37cd10a7be7574771
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/611ef4bd9c73d9e6d87bed57a635ff1fdd8c91ea
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/6e983789b7588ee59cbf303583546c043bad8e19
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/7a9bc9e3f42391e4c187e099263cf7a1c4b69ff5
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/9b75dff8446ec871030d8daf5a69e74f5fe8b956
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/b7db31a52c3862a1a32202a273a4c32e7f5f4823
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/c7498f9bc390479ccfad7c7f2332237ff4945b03
    Patch