Skip to main content

Mondoo Vulnerability Intelligence

Curated by Mondoo Research, enhanced with AI

Resources

Search Vulnerabilities
Trending CVEs
Browse Ecosystems
Terminology
Blog

Open Source

cnquery
cnspec

Star us on GitHub!

Company

Mondoo Platform
About
Contact

© 2026 Mondoo, Inc.

Privacy Policy Terms of Service Imprint

Vulnerability Intelligence

Vulnerability IntelligenceCVE-2026-23083

CVE-2026-23083

UNKNOWN

fou: Don't allow 0 for FOU_ATTR_IPPROTO.

Published Feb 4, 2026

Modified 1 months ago

Details

In the Linux kernel, the following vulnerability has been resolved:

fou: Don't allow 0 for FOU_ATTR_IPPROTO.

fou_udp_recv() has the same problem mentioned in the previous patch.

If FOU_ATTR_IPPROTO is set to 0, skb is not freed by fou_udp_recv() nor "resubmit"-ted in ip_protocol_deliver_rcu().

Let's forbid 0 for FOU_ATTR_IPPROTO.

References

https://git.kernel.org/stable/c/1cc98b8887cabb1808d2f4a37cd10a7be7574771

https://git.kernel.org/stable/c/611ef4bd9c73d9e6d87bed57a635ff1fdd8c91ea

https://git.kernel.org/stable/c/6e983789b7588ee59cbf303583546c043bad8e19

https://git.kernel.org/stable/c/7a9bc9e3f42391e4c187e099263cf7a1c4b69ff5

https://git.kernel.org/stable/c/9b75dff8446ec871030d8daf5a69e74f5fe8b956

https://git.kernel.org/stable/c/b7db31a52c3862a1a32202a273a4c32e7f5f4823

https://git.kernel.org/stable/c/c7498f9bc390479ccfad7c7f2332237ff4945b03

https://www.cve.org/CVERecord?id=CVE-2026-23083

Ecosystems

Timeline

PublishedFeb 4, 2026

ModifiedFeb 9, 2026

CVE-2026-23083 | Mondoo Vulnerability Intelligence