What is GHSA-mr4j-h79v-vcp9?

GHSA-mr4j-h79v-vcp9 is a security advisory published by GitHub Security Advisories with High severity. In the Linux kernel, the following vulnerability has been resolved: net: strparser: fix skb_head...

Which CVE IDs does GHSA-mr4j-h79v-vcp9 cover?

GHSA-mr4j-h79v-vcp9 covers the following CVE IDs: CVE-2026-46102. Each CVE has its own detail page on EchelonGraph Pulse with the synthesized EG score.

What is the CVSS v3 score of GHSA-mr4j-h79v-vcp9?

GHSA-mr4j-h79v-vcp9 has a CVSS v3 base score of 7.5, published by GitHub Security Advisories.

GHSA-mr4j-h79v-vcp9HighCVSS 7.5

In the Linux kernel, the following vulnerability has been resolved: net: strparser: fix skb_head...

Vendor

GitHub Security Advisories

Published

May 27, 2026

Last Modified

May 30, 2026

🔗 CVE IDs covered (1)

CVE-2026-46102 →

📋 Description

In the Linux kernel, the following vulnerability has been resolved:

net: strparser: fix skb_head leak in strp_abort_strp()

When the stream parser is aborted, for example after a message assembly timeout, it can still hold a reference to a partially assembled message in strp->skb_head.

That skb is not released in strp_abort_strp(), which leaks the partially assembled message and can be triggered repeatedly to exhaust memory.

Fix this by freeing strp->skb_head and resetting the parser state in the abort path. Leave strp_stop() unchanged so final cleanup still happens in strp_done() after the work and timer have been synchronized.

🔗 References (7)

https://nvd.nist.gov/vuln/detail/CVE-2026-46102
https://git.kernel.org/stable/c/19ca9475f18f991735f98a22e735c43e95e6298d
https://git.kernel.org/stable/c/5327dad2ffe9c1b49881dd6d51ff3c6893847568
https://git.kernel.org/stable/c/56082f442023db9be1a5a29d4ee361de4017c0b7
https://git.kernel.org/stable/c/e9ae00490d474757c0f9c65073de83e6bb1e5a00
https://git.kernel.org/stable/c/fe72340daaf1af588be88056faf98965f39e6032
https://github.com/advisories/GHSA-mr4j-h79v-vcp9