In the Linux kernel, the following vulnerability has been resolved:
udp: call skb_orphan() before skb_attempt_defer_free()
Standard UDP receive path does not use skb->destructor.
But skmsg layer does use it, since it calls skb_set_owner_sk_safe()
from udp_read_skb().
This then triggers this warning in skb_attempt_defer_free():
DEBUG_NET_WARN_ON_ONCE(skb->destructor);
We must call skb_orphan() to fix this issue.
CVE-2026-23048
NONE
EPSS 0.03%
Updated Feb 04, 2026
In
CVE Details
CVE ID
CVE-2026-23048
Published Date
Feb 04, 2026
Vendor
In
Severity
NONE
Exploit Prediction (EPSS)
Probability of Exploit
0.03%
Likelihood of exploitation in next 30 days
Percentile:
6.9th percentile (higher than 6.9% of all CVEs)
Standard patching cycle
Impact
Minimal impact
Source
View Advisory